打印

[求助] 求助：瑞星查出的无法上传分析的病毒

本主题由 Effenberg 于 2008-7-22 08:40 关闭

cmj

独舞二月雪

Rank: 1

UID: 203789
积分: 30
活跃度: 76

发短消息
加为好友
当前离线

楼主大中小发表于 2008-7-18 00:35 只看该作者

求助：瑞星查出的无法上传分析的病毒

最近电脑出现过两次蓝屏
杀毒软件装的是eset smart security,和avg,用这两个杀毒软件扫描都查不出毒来。
在淘宝网上登陆时输入密码时输入法不可用，于是点下面的一个瑞星免费在线杀毒，查出两个病毒，路径如下：
c:\$recycle.bin\s-1-5-18\$r6p783p.exe
c:\$recycle.bin\s-1-5-18\$rl9uqdo.dll
想把这两个文件上传至剑盟分析，但是浏览文件夹时说位置不可用，无法访问c:\$recycle.bin\s-1-5-18\，拒绝访问

TOP

byxxdrls

版主

Rank: 11

UID: 259456
积分: 1123
活跃度: 2794

热心会员勋章我的中国心

发短消息
加为好友
当前在线

沙发大中小发表于 2008-7-18 08:11 只看该作者

请用sreng2扫描系统http://bbs.janmeng.com/attachment.php?aid=261657(2,6.12.1018版）扫描前勾选“检查进程模块的数字签名”。把报告作为附件发到救援区。

TOP

cmj

独舞二月雪

Rank: 1

UID: 203789
积分: 30
活跃度: 76

发短消息
加为好友
当前离线

板凳大中小发表于 2008-7-18 19:23 只看该作者

扫描报告

这个报告传了半天也没传上去，还是贴上吧！****2008-07-18,18:27:40

System Repair Engineer 2.6.12.1018
Smallfrogs (http://www.KZTechs.com)

Windows Vista Home Basic Edition  (Build 6000) - 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<Sidebar><C:\Program Files\Windows Sidebar\sidebar.exe /autoRun>  [(Verified)Microsoft Windows]
<TOSCDSPD><TOSCDSPD.EXE>  [N/A]
<WangWang><; "C:\Program Files\Alisoft\WangWang\WangWang.exe">  [(Verified)"Alibaba Software(Shanghai)Co,. Ltd"]
<AdobeUpdater><; C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe>  [(Verified)Adobe Systems Incorporated]
<msnmsgr><; "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>  [N/A]
<run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Windows Defender><%ProgramFiles%\Windows Defender\MSASCui.exe -hide>  [(Verified)Microsoft Windows]
<Adobe Reader Speed Launcher><"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe">  [(Verified)"Adobe Systems, Incorporated"]
<NDSTray.exe><NDSTray.exe>  [N/A]
<Microsoft Pinyin IME Migration><C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCMIG.EXE /INSTALL>  [(Verified)Microsoft Corporation]
<jswtrayutil><"C:\Program Files\Jumpstart\jswtrayutil.exe">  [File is missing]
<IgfxTray><C:\Windows\system32\igfxtray.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<HotKeysCmds><C:\Windows\system32\hkcmd.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Persistence><C:\Windows\system32\igfxpers.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Apoint><C:\Program Files\Apoint2K\Apoint.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<TPwrMain><%ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE>  [(Verified)TOSHIBA CORPORATION]
<SmoothView><%ProgramFiles%\Toshiba\SmoothView\SmoothView.exe>  [(Verified)TOSHIBA CORPORATION]
<00TCrdMain><%ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe>  [TOSHIBA Corporation]
<MSConfig><"C:\Windows\system32\msconfig.exe" /auto>  [(Verified)Microsoft Windows]
<WebPlayerUpdater><"C:\Program Files\VIEWGOOD\WebPlayer 2007\WebPlayerDeamon.exe" /Hide>  [南京远古科技有限公司]
<CMB webProtect><C:\Program Files\CMBCHINA\WebProtect\WPService.exe  /alone>  [(Verified)China Merchants Bank]
<egui><"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice>  [(Verified)"ESET, spol. s r.o."]
<ESET_vc52Live><C:\Program Files\ESET\ESET Smart Security\ESET_vc52Live.exe>  []
<AVG8_TRAY><C:\PROGRA~1\AVG\AVG8\avgtray.exe>  [(Verified)AVG Technologies]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe>  [(Verified)Microsoft Windows]
<Userinit><C:\Windows\system32\userinit.exe,>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><avgrsstx.dll>  [(Verified)"GRISOFT, s.r.o."]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
<WinlogonNotify: igfxcui><igfxdev.dll>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Windows Mail 7><"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE>  [File is missing]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<PPLiveVA><; C:\Program Files\PPLiveVA\PPLiveVA.exe /LoadModule PPVA.DLL /M REAL /S 0 /T 0>  [(Verified)Synacast Corp.]

==================================
启动文件夹
N/A

==================================
服务
[Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
[arpfwsvc / arpfwsvc][Stopped/Auto Start]
  <C:\Program Files\ArpFw\arpfwsvc.exe><>
[AVG8 WatchDog / avg8wd][Running/Auto Start]
  <C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe><AVG Technologies CZ, s.r.o.>
[ConfigFree Service / ConfigFree Service][Running/Auto Start]
  <"C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe"><TOSHIBA CORPORATION>
[Eset HTTP Server / EhttpSrv][Stopped/Manual Start]
  <"C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe"><ESET>
[Eset Service / ekrn][Running/Auto Start]
  <"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"><ESET>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Jumpstart Wifi Protected Setup / jswpsapi][Stopped/Manual Start]
  <C:\Program Files\Jumpstart\jswpsapi.exe><Atheros Communications, Inc.>
[O2Micro Flash Memory Card Service / o2flash][Running/Auto Start]
  <"c:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe"><O2Micro International>
[Remote Procedure Call (RPC) Net / rpcnet][Running/Auto Start]
  <C:\Windows\system32\rpcnet.exe><Absolute Software Corp.>
[TOSHIBA Navi Support Service / TNaviSrv][Running/Auto Start]
  <C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe><TOSHIBA Corporation>
[TOSHIBA Optical Disc Drive Service / TODDSrv][Running/Auto Start]
  <C:\Windows\system32\TODDSrv.exe><TOSHIBA Corporation>
[TOSHIBA Power Saver / TosCoSrv][Running/Auto Start]
  <"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"><TOSHIBA Corporation>
[TOSHIBA SMART Log Service / TOSHIBA SMART Log Service][Running/Auto Start]
  <"C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe"><TOSHIBA Corporation>
[Ulead Burning Helper / UleadBurningHelper][Running/Auto Start]
  <C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe><Ulead Systems, Inc.>
[Windows Live Setup Service / WLSetupSvc][Stopped/Manual Start]
  <"C:\Program Files\Windows Live\installer\WLSetupSvc.exe"><Microsoft Corporation>
[XAudioService / XAudioService][Running/Auto Start]
  <C:\Windows\system32\DRIVERS\xaudio.exe><Conexant Systems, Inc.>
[Rising Online Scan Service / RsOlHost][Running/Manual Start]
  <"C:\Program Files\Rising\RavOL\RsOLHost.exe"><Beijing Rising Technology Co., Ltd.>

==================================
驱动程序
[adp94xx / adp94xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adp94xx.sys><Adaptec, Inc.>
[adpahci / adpahci][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adpahci.sys><Adaptec, Inc.>
[adpu160m / adpu160m][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adpu160m.sys><Adaptec, Inc.>
[adpu320 / adpu320][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adpu320.sys><Adaptec, Inc.>
[aic78xx / aic78xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\djsvs.sys><Adaptec, Inc.>
[aliide / aliide][Stopped/Disabled]
  <\SystemRoot\system32\drivers\aliide.sys><Acer Laboratories Inc.>
[Alps Pointing-device Filter Driver / ApfiltrService][Running/Manual Start]
  <system32\DRIVERS\Apfiltr.sys><Alps Electric Co., Ltd.>
[arc / arc][Stopped/Disabled]
  <\SystemRoot\system32\drivers\arc.sys><Adaptec, Inc.>
[arcsas / arcsas][Stopped/Disabled]
  <\SystemRoot\system32\drivers\arcsas.sys><Adaptec, Inc.>
[Atheros Extensible Wireless LAN device driver / athr][Running/Manual Start]
  <system32\DRIVERS\athr.sys><Atheros Communications, Inc.>
[AVG AVI Loader Driver x86 / AvgLdx86][Running/System Start]
  <\SystemRoot\System32\Drivers\avgldx86.sys><AVG Technologies CZ, s.r.o.>
[AVG On-access Scanner Minifilter Driver x86 / AvgMfx86][Running/System Start]
  <\SystemRoot\System32\Drivers\avgmfx86.sys><GRISOFT, s.r.o.>
[blbdrive / blbdrive][Stopped/Disabled]
  <\SystemRoot\system32\drivers\blbdrive.sys><N/A>
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\brfiltlo.sys>

[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\brfiltup.sys>

[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\brserid.sys>

[Brother WDM Serial driver / BrSerWdm][Stopped/Disabled]
  <\SystemRoot\system32\drivers\brserwdm.sys>

[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled]
  <\SystemRoot\system32\drivers\brusbmdm.sys>

[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\brusbser.sys>

[cmdide / cmdide][Stopped/Disabled]
  <\SystemRoot\system32\drivers\cmdide.sys><CMD Technology, Inc.>
[Microsoft UAA Function Driver for High Definition Audio Service / CnxtHdAudAddService][Running/Manual Start]
  <system32\drivers\CHDART.sys><Conexant Systems Inc.>
[Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start]
  <system32\DRIVERS\E1G60I32.sys><Intel Corporation>
[eamon / eamon][Running/Auto Start]
  <system32\DRIVERS\eamon.sys><ESET>
[easdrv / easdrv][Running/System Start]
  <system32\DRIVERS\easdrv.sys><ESET>
[elxstor / elxstor][Stopped/Disabled]
  <\SystemRoot\system32\drivers\elxstor.sys><Emulex>
[epfw / epfw][Running/Auto Start]
  <system32\DRIVERS\epfw.sys><ESET>
[Eset Personal Firewall / Epfwndis][Running/Manual Start]
  <system32\DRIVERS\Epfwndis.sys><ESET>
[epfwtdi / epfwtdi][Running/System Start]
  <system32\DRIVERS\epfwtdi.sys><ESET>
[HpCISSs / HpCISSs][Stopped/Disabled]
  <\SystemRoot\system32\drivers\hpcisss.sys><Hewlett-Packard Company>
[HSF_DPV / HSF_DPV][Running/Manual Start]
  <system32\DRIVERS\HSX_DPV.sys><Conexant Systems, Inc.>
[HSXHWAZL / HSXHWAZL][Running/Manual Start]
  <system32\DRIVERS\HSXHWAZL.sys><Conexant Systems, Inc.>
[Intel AHCI Controller / iaStor][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\iaStor.sys><Intel Corporation>
[Intel RAID Controller Vista / iaStorV][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iastorv.sys><Intel Corporation>
[igfx / igfx][Running/Manual Start]
  <system32\DRIVERS\igdkmd32.sys><Intel Corporation>
[iirsp / iirsp][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iirsp.sys><Intel Corp./ICP vortex GmbH>
[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
  <system32\DRIVERS\ipinip.sys><N/A>
[ITEATAPI_Service_Install / iteatapi][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iteatapi.sys><Integrated Technology Express, Inc.>
[ITERAID_Service_Install / iteraid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iteraid.sys><Integrated Technology Express, Inc.>
[JumpStart Wireless Filter Driver / jswpslwf][Running/System Start]
  <system32\DRIVERS\jswpslwf.sys><Atheros Communications, Inc.>
[LSI_FC / LSI_FC][Stopped/Disabled]
  <\SystemRoot\system32\drivers\lsi_fc.sys><LSI Logic>
[LSI_SAS / LSI_SAS][Stopped/Disabled]
  <\SystemRoot\system32\drivers\lsi_sas.sys><LSI Logic>
[LSI_SCSI / LSI_SCSI][Stopped/Disabled]
  <\SystemRoot\system32\drivers\lsi_scsi.sys><LSI Logic>
[mdmxsdk / mdmxsdk][Running/Auto Start]
  <system32\DRIVERS\mdmxsdk.sys><Conexant>
[megasas / megasas][Stopped/Disabled]
  <\SystemRoot\system32\drivers\megasas.sys><LSI Logic Corporation>
[Mraid35x / Mraid35x][Stopped/Disabled]
  <\SystemRoot\system32\drivers\mraid35x.sys><LSI Logic Corporation>
[Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit / NETw3v32][Stopped/Manual Start]
  <system32\DRIVERS\NETw3v32.sys><Intel? Corporation>
[nfrd960 / nfrd960][Stopped/Disabled]
  <\SystemRoot\system32\drivers\nfrd960.sys><IBM Corporation>
[N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ntrigdigi.sys><N-trig Innovative Technologies>
[nvraid / nvraid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\nvraid.sys><NVIDIA Corporation>
[nvstor / nvstor][Stopped/Disabled]
  <\SystemRoot\system32\drivers\nvstor.sys><NVIDIA Corporation>
[IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start]
  <system32\DRIVERS\nwlnkflt.sys><N/A>
[IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start]
  <system32\DRIVERS\nwlnkfwd.sys><N/A>
[O2MDRDR / O2MDRDR][Running/Manual Start]
  <system32\DRIVERS\o2media.sys><O2Micro>
[Protector / Protector][Running/System Start]
  <\??\C:\Windows\system32\drivers\Protector.sys><N/A>
[ProtectorA / ProtectorA][Running/System Start]
  <system32\drivers\ProtectorA.sys><N/A>
[Generic IO & Memory Access / QIOMem][Running/Manual Start]
  <system32\DRIVERS\QIOMem.sys><TOSHIBA>
[QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ql2300.sys><QLogic Corporation>
[QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ql40xx.sys><QLogic Corporation>
[SiSRaid2 / SiSRaid2][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sisraid2.sys><Silicon Integrated Systems Corp.>
[SiSRaid4 / SiSRaid4][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sisraid4.sys><Silicon Integrated Systems>
[Symc8xx / Symc8xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\symc8xx.sys><LSI Logic>
[Sym_hi / Sym_hi][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sym_hi.sys><LSI Logic>
[Sym_u3 / Sym_u3][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sym_u3.sys><LSI Logic>
[TOSHIBA Writing Engine Filter Driver / tdcmdpst][Running/Manual Start]
  <system32\DRIVERS\tdcmdpst.sys><TOSHIBA Corporation.>
[TOSHIBA tos_sps32 Service / tos_sps32][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\tos_sps32.sys><TOSHIBA Corporation>
[TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver / TVALZ][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\TVALZ_O.SYS><TOSHIBA Corporation>
[uliahci / uliahci][Stopped/Disabled]
  <\SystemRoot\system32\drivers\uliahci.sys><ULi Electronics Inc.>
[UlSata / UlSata][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ulsata.sys><Promise Technology, Inc.>
[ulsata2 / ulsata2][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ulsata2.sys><Promise Technology, Inc.>
[viaide / viaide][Stopped/Disabled]
  <\SystemRoot\system32\drivers\viaide.sys><VIA Technologies, Inc.>
[vsmraid / vsmraid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\vsmraid.sys><VIA Technologies Inc.,Ltd>
[winachsf / winachsf][Running/Manual Start]
  <system32\DRIVERS\HSX_CNXT.sys><Conexant Systems, Inc.>
[XAudio / XAudio][Running/Auto Start]
  <system32\DRIVERS\xaudio.sys><Conexant Systems, Inc.>
[NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwlh][Running/Manual Start]
  <system32\DRIVERS\yk60x86.sys><Marvell>

==================================
浏览器加载项
[ThunderAtOnce Class]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233} <C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[AVG Safe Search]
  {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.>
[WebProtect]
  {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} <C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll, (Signed) China Merchants Bank>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[]
  {7E853D72-626A-48EC-A868-BA8D5E23E045} <, >
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[Windows Live 登录帮助程序]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[AVG Security Toolbar]
  {A057A204-BACC-4D26-9990-79A187E2698E} <C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL, (Signed) AVG, Technologies CZ, s.r.o                >
[CITICS ProcessProtect Class]
  {C37F9D60-975D-41f2-A745-4DC934D319AA} <CITICSPP.dll, ISRA>
[Java Plug-in 1.6.0_03]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[启动迅雷5]
  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <C:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD>
[BlogThisToolbarButton Class]
  {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} <C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll, (Signed) Microsoft Corporation>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[PPLive]
  {95B3F550-91C4-4627-BCC4-521288C52977} <C:\Program Files\PPLive\PPLive.exe, (Signed) N/A>
[AVG Security Toolbar]
  {A057A204-BACC-4D26-9990-79A187E2698E} <C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL, (Signed) AVG, Technologies CZ, s.r.o                >
[EscPWDCtrl Class]
  {0C207959-1551-4E49-993C-78DD2D62955F} <C:\Windows\system32\EscPWD.dll, >
[Edit Class]
  {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\Windows\system32\CMBEdit.dll, >
[Java Plug-in 1.6.0_03]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll, (Signed) Sun Microsystems, Inc.>
[Rising Online Antivirus scanner control]
  {9FAFB576-6933-4CCC-AB3D-B988EC43D04E} <%ProgramFiles%\Rising\RavOL\RavOLCtl.dll, (Signed) N/A>
[CCTVUpdateInstall]
  {AC414988-E5BB-4C2C-873B-EA53D2F3D23A} <C:\Users\maggie\AppData\Roaming\CCTV\tv\CCTVUpdateInstall.dll, (Signed) >
[Java Plug-in 1.6.0_03]
  {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_03]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll, (Signed) Sun Microsystems, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\Windows\system32\Macromed\Flash\Flash9f.ocx, (Signed) Adobe Systems, Inc.>
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >
[]
  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <, >
[GerneralPeerID Class]
  {0A47E819-F82E-4D5D-B806-6A9EA94D68CD} <C:\Program Files\Thunder Network\Thunder\Components\InMedia\peerid.dll, >
[EscPWDCtrl Class]
  {0C207959-1551-4E49-993C-78DD2D62955F} <C:\Windows\system32\EscPWD.dll, >
[Edit Class]
  {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\Windows\system32\CMBEdit.dll, >
[Fade]
  {16B280C5-EE70-11D1-9066-00C04FD9189D} <C:\Windows\system32\Dxtmsft.dll, (Signed) Microsoft Corporation>
[InformationCardSigninHelper Class]
  {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\Windows\system32\icardie.dll, (Signed) Microsoft Corporation>
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\Windows\system32\aliedit\pta.dll, (Signed) >
[]
  {1E8A6170-7264-4D0F-BEAE-D42A53123C75} <, >
[]
  {219C3416-8CB2-491A-A3C7-D9FCDDC9D600} <, >
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\Windows\System32\wmpdxm.dll, (Signed) Microsoft Corporation>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\Windows\system32\mshtml.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Free Threaded XML DOM Document]
  {2933BF91-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Detecter Class]
  {2C48F48F-01A6-4593-A678-C7DA83C55719} <C:\Windows\system32\SecCtl.dll, (Signed) >
[Init_Tool Control]
  {399C2756-84D4-4AC5-9E86-288340334FB1} <C:\Windows\system32\INIT_T~1.OCX, (Signed) Microsoft>
[]
  {3A7698F3-1BCC-4838-B3BF-EF4E3C5E209A} <, >
[AVG Safe Search]
  {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.>
[]
  {4045D313-1D5E-4FE4-93A0-A34630B6A00B} <, >
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\Windows\System32\aliedit\aliedit.dll, (Signed) >
[VaCom.Application]
  {51E88884-1306-4444-B22D-C34119E44232} <C:\PROGRA~1\Tudou\飞速TU~1\TDVaCom.Dll, (Signed) 土豆网>
[HHCtrl Object]
  {52A2AAAE-085D-4187-97EA-8C30DB990436} <%SystemRoot%\System32\hhctrl.ocx, (Signed) N/A>
[WebProtect]
  {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} <C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll, (Signed) China Merchants Bank>
[XMP Class]
  {6483F145-A768-4C41-AACC-52D4D7845851} <C:\ProgramData\Thunder Network\KanKan\xplayer.dll_1_work, >
[XDRM]
  {693571CB-54A3-4E90-9D52-EEAE1334E2D3} <C:\ProgramData\Thunder Network\KanKan\xdrm.dll_1_work, >
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[WangWangObj Class]
  {6E213FC7-DD5A-4115-B7E6-D4C7838C361E} <C:\PROGRA~1\Alisoft\WangWang\WangWangX6.dll, (Signed) 阿里巴巴软件(上海)有限公司>
[Windows Script Host Shell Object]
  {72C24DD5-D70A-438B-8A42-98424B88AFB8} <C:\Windows\system32\wshom.ocx, (Signed) Microsoft Corporation>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[MediaComm Class]
  {7670648D-461B-42AF-BDFE-46D26AF5EFF2} <C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin17.dll, Thunder Networking Technologies,LTD>
[]
  {7E853D72-626A-48EC-A868-BA8D5E23E045} <, >
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\Windows\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[XML DOM Document 5.0]
  {88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[XML DOM Document 6.0]
  {88D96A05-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, (Signed) N/A>
[XML HTTP 6.0]
  {88D96A0A-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, (Signed) N/A>
[]
  {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >
[]
  {90222687-F593-4738-B738-FBEE9C7B26DF} <, >
[Windows Live 登录帮助程序]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[]
  {95B3F550-91C4-4627-BCC4-521288C52977} <, >
[Rising Online Antivirus scanner control]
  {9FAFB576-6933-4CCC-AB3D-B988EC43D04E} <%ProgramFiles%\Rising\RavOL\RavOLCtl.dll, (Signed) N/A>
[AVG Security Toolbar]
  {A057A204-BACC-4D26-9990-79A187E2698E} <C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL, (Signed) AVG, Technologies CZ, s.r.o                >
[WebVGPlayer Class]
  {AA899B43-24BD-4B6B-BBD0-45557D8D11E0} <C:\Program Files\VIEWGOOD\WebPlayer 2007\WebPlayer5\VGPlayer.dll, >
[CCTVUpdateInstall]
  {AC414988-E5BB-4C2C-873B-EA53D2F3D23A} <C:\Users\maggie\AppData\Roaming\CCTV\tv\CCTVUpdateInstall.dll, (Signed) >
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.5802.54.(487).dll, ShenZhen Thunder Networking Technologies Ltd.>
[TrustPad Control]
  {C2A9975C-AECB-4261-A724-44EE4CCBEDB3} <C:\Windows\system32\TrustPad.ocx, >
[CITICS ProcessProtect Class]
  {C37F9D60-975D-41F2-A745-4DC934D319AA} <CITICSPP.dll, ISRA>
[KooPlayer Control]
  {C728DAB8-FDF5-4CD7-89DD-879D25794C77} <C:\Users\maggie\AppData\Roaming\CCTV\tv\CCTVPL~1.OCX, (Signed) CCTV.COM>
[CITICS Edit Class]
  {CAB6E271-C9B9-4A85-96A0-1B3A19A4E6DE} <CITICSKP.dll, ISRA>
[QQPlayerSvr Proxy Control]
  {CD108273-D434-43E6-AA90-1469F97EB398} <C:\Program Files\Tencent\QQ\QzoneMusic.dll, (Signed) 腾讯科技>
[AUDIO__MP3 Moniker Class]
  {CD3AFA76-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[AUDIO__X_MS_WMA Moniker Class]
  {CD3AFA84-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\Windows\system32\rmoc3260.dll, (Signed) RealNetworks, Inc.>
[Windows Live 登录控制]
  {D2517915-48CE-4286-970F-921E881B8C5C} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\Windows\system32\Macromed\Flash\Flash9f.ocx, (Signed) Adobe Systems, Inc.>
[RevealTrans]
  {E31E87C4-86EA-4940-9B8A-5BD5D179A737} <C:\Windows\system32\Dxtmsft.dll, (Signed) Microsoft Corporation>
[TimwpDll.TimwpCheck]
  {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} <C:\PROGRA~1\Tencent\QQ\Timwp.dll, (Signed) TENCENT>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Thunder DapPlayer]
  {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} <C:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\DapPlayer3.0.5712.71.487.dll, ShenZhen Thunder Networking Technologies Ltd.>
[XPPlayer Class]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.0.0.166.(487).dll, Thunder>
[XML DOM Document 3.0]
  {F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Free Threaded XML DOM Document 3.0]
  {F5078F33-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML HTTP 3.0]
  {F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XSL Template 3.0]
  {F5078F36-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Init_Tool Control]
  {F7465932-3C3D-4DA2-8541-406E07C369A9} <C:\Windows\system32\INIT_T~2.OCX, (Signed) Microsoft>
[使用迅雷下载]
  <C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A>
[使用迅雷下载全部链接]
  <C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A>
[导出到 Microsoft Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000, N/A>
[添加到QQ表情]
  <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>

==================================
正在运行的进程
[PID: 488 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 552 / SYSTEM][C:\Windows\system32\csrss.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 592 / SYSTEM][C:\Windows\system32\wininit.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[C:\Windows\system32\avgrsstx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[PID: 604 / SYSTEM][C:\Windows\system32\csrss.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 644 / SYSTEM][C:\Windows\system32\services.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 656 / SYSTEM][C:\Windows\system32\lsass.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 664 / SYSTEM][C:\Windows\system32\lsm.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 788 / SYSTEM][C:\Windows\system32\winlogon.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 876 / SYSTEM][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 916 / LOCAL SERVICE][C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe]  [Microsoft Corporation, 3.0.6913.0 (vista_rtm_wcp.061013-1925)]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll]  [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\7633a09e08c8e47895c22bed87b9c939\PresentationFontCache.ni.exe]  [Microsoft Corporation, 3.0.6913.0 (vista_rtm_wcp.061013-1925)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\61b951bd03727a096c1c02cb18d5ce30\System.ServiceProcess.ni.dll]  [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\3b53dcf335a24dff03c7354dfebcb049\WindowsBase.ni.dll]  [Microsoft Corporation, 3.0.6913.0 (vista_rtm_wcp.061013-1925)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\81e201b865ca4b1dc1baa769353a1d32\PresentationCore.ni.dll]  [Microsoft Corporation, 3.0.6920.2 (vista_ldr.061020-1904)]
[PID: 960 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1008 / SYSTEM][C:\Windows\System32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1096 / LOCAL SERVICE][C:\Windows\System32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[C:\Windows\system32\CnxtAp32.dll]  [Conexant Systems Inc., 4.36.6.0]
[PID: 1124 / SYSTEM][C:\Windows\System32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1136 / SYSTEM][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1292 / NETWORK SERVICE][C:\Windows\system32\SLsvc.exe]  [Microsoft Corporation, 6.0.6000.16509 (vista_gdr.070620-1500)]
[PID: 1324 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1492 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1664 / SYSTEM][C:\Windows\System32\spoolsv.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1688 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 356 / maggie][C:\Windows\system32\taskeng.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\system32\igfxTMM.dll]  [, 1, 0, 0, 1]
[C:\Windows\system32\igfxdev.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1329]
[PID: 372 / maggie][C:\Windows\system32\Dwm.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 516 / maggie][C:\Windows\Explorer.EXE]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
[C:\Program Files\ESET\ESET Smart Security\shellExt.dll]  [ESET, 3.0.669 ]
[C:\Program Files\AVG\AVG8\avgse.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.5.29]
[C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 8, 96]
[C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 20]
[C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 16]
[C:\Windows\system32\igfxpph.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\hccutils.DLL]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxres.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxress.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
[PID: 1832 / maggie][C:\Program Files\Windows Defender\MSASCui.exe]  [Microsoft Corporation, 1.1.1505.0]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 1904 / maggie][C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe]  [TOSHIBA CORPORATION, 7, 0, 1, 11]
[C:\Program Files\TOSHIBA\ConfigFree\CFUPNP.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 1]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\TOSHIBA\ConfigFree\CFP2API.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 1]
[C:\Program Files\TOSHIBA\ConfigFree\OpenProp.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 2]
[C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 12]
[C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll]  [TOSHIBA CORPORATION, 7, 0, 1, 19]
[C:\Program Files\TOSHIBA\ConfigFree\CFWLAPI.dll]  [TOSHIBA CORPORATION, 1, 0, 0, 12]
[C:\Program Files\TOSHIBA\ConfigFree\NDSParts.dll]  [TOSHIBA CORPORATION, 7, 0, 1, 8]
[C:\Program Files\TOSHIBA\ConfigFree\NDSNLS.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 5]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 1400 / maggie][C:\Windows\System32\hkcmd.exe]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\System32\hccutils.DLL]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\System32\igfxres.dll]  [Intel Corporation, 7.14.10.1329]
[PID: 2008 / maggie][C:\Windows\System32\igfxpers.exe]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 2028 / maggie][C:\Program Files\Apoint2K\Apoint.exe]  [Alps Electric Co., Ltd., 7.0.2.212]
[C:\Windows\system32\VXDIF.DLL]  [Alps Electric Co., Ltd., 6.0.3.18]
[C:\Program Files\Apoint2K\ApMain.DLL]  [Alps Electric Co., Ltd., 6.0.2.18]
[C:\Program Files\Apoint2K\ApCommon.dll]  [Alps Electric Co., Ltd., 6.0.2.47]
[C:\Program Files\Apoint2K\ApDual.dll]  [Alps Electric Co., Ltd., 6.0.2.23]
[C:\Program Files\Apoint2K\ApPad.dll]  [Alps Electric Co., Ltd., 6.0.2.53]
[C:\Program Files\Apoint2K\EzCapt.dll]  [Alps Electric Co., Ltd., 6.0.2.20]
[C:\Program Files\Apoint2K\EzLaunch.dll]  [Alps Electric Co., Ltd., 6.0.2.35]
[C:\Program Files\Apoint2K\ApStick.dll]  [ALPS Electric Co., Ltd., 6.0.2.39]
[C:\Program Files\Apoint2K\ApOthers.dll]  [Alps Electric Co., Ltd., 6.0.2.34]
[C:\Program Files\Apoint2K\ApMouse.dll]  [ALPS Electric Co., Ltd., 6.0.2.35]
[C:\Program Files\Apoint2K\EzAuto.dll]  [Alps Electric Co., Ltd., 5.5.1.91]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\Apoint2K\ApString.dll]  [Alps Electric Co., Ltd., 6.0.301.44]
[PID: 408 / maggie][C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe]  [TOSHIBA Corporation, 1.0.0.2]
[C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll]  [TOSHIBA Corporation, 1.0.0.2]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll]  [TOSHIBA Corporation, 1, 0, 0, 1]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\TOSHIBA\Power Saver\TCooling.dll]  [TOSHIBA Corporation, 1.0.0.0]
[C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll]  [TOSHIBA Corporation, 1.0.0.2]
[C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll]  [TOSHIBA Corporation, 1.0.0.0]
[C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll]  [TOSHIBA Corporation, 1.0.0.0]
[C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll]  [TOSHIBA Corporation, 1.0.0.1]
[C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll]  [TOSHIBA Corporation, 1.0.0.0]
[PID: 1420 / maggie][C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe]  [TOSHIBA Corporation, 3, 0, 8, 32]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 640 / maggie][C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe]  [TOSHIBA Corporation, 2.0.0.6]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll]  [TOSHIBA Corporation, 1, 0, 0, 7]
[C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll]  [TOSHIBA Corporation, 1, 0, 0, 7]
[C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll]  [N/A, ]
[C:\Program Files\TOSHIBA\Power Saver\TFunctab.DLL]  [TOSHIBA Corporation, 1.0.0.1]
[C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll]  [TOSHIBA Corporation, 1.0.0.0]
[C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll]  [TOSHIBA Corporation, 1.0.0.2]
[C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll]  [TOSHIBA Corporation, 1.0.0.0]
[C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll]  [TOSHIBA Corporation, 1, 0, 0, 5]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnEsc.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
[C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll]  [N/A, ]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll]  [TOSHIBA Corporation, 1, 0, 0, 1]
[C:\Program Files\TOSHIBA\Power Saver\TFunc2.DLL]  [TOSHIBA Corporation, 1.0.0.0]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll]  [TOSHIBA Corporation, 1, 0, 0, 3]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll]  [TOSHIBA Corporation, 1, 0, 0, 3]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5.dll]  [TOSHIBA Corporation, 1, 2, 7, 0]
[C:\Windows\system32\igfxexps.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll]  [TOSHIBA Corporation, 1, 0, 0, 4]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll]  [TOSHIBA Corporation., 1, 0, 32, 6]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll]  [TOSHIBA Corporation, 1, 1, 4, 0]
[C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll]  [N/A, ]
[C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll]  [, 1, 0, 1, 32]
[C:\Program Files\Toshiba\ConfigFree\notify\NotifyCFF86.dll]  [TOSHIBA, 1, 0, 0, 3]
[C:\Program Files\TOSHIBA\SmoothView\NotifyTZU.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
[C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll]  [, 1, 0, 0, 0]
[C:\Program Files\TOSHIBA\Utilities\NotifyX.dll]  [TOSHIBA Corp., 1.00.02.32]
[PID: 1208 / maggie][C:\Program Files\VIEWGOOD\WebPlayer 2007\WebPlayerDeamon.exe]  [南京远古科技有限公司, 8.0.0.3]
[C:\Program Files\VIEWGOOD\WebPlayer 2007\AsyncHttp71.dll]  [南京远古科技, 1, 2, 0, 0]
[C:\Program Files\VIEWGOOD\WebPlayer 2007\FileOperation.dll]  [VIEWGOOD, 8, 0, 0, 0]
[C:\Program Files\VIEWGOOD\WebPlayer 2007\zipdll.dll]  [N/A, ]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 1480 / maggie][C:\Program Files\CMBCHINA\WebProtect\WPService.exe]  [China Merchants Bank, 1, 0, 0, 1]
[C:\Program Files\CMBCHINA\WebProtect\WebProtectPlus.dll]  [China Merchants Bank, 1, 0, 0, 1]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 1912 / maggie][C:\Program Files\ESET\ESET Smart Security\egui.exe]  [ESET, 3.0.669 ]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\ESET\ESET Smart Security\eguiScan.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\eguiAmon.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\eguiEmon.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\eguiEpfw.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\eguiSmon.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\eguiUpdate.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\eguiMailPlugins.dll]  [ESET, 3.0.669 ]
[PID: 2060 / maggie][C:\Windows\system32\igfxsrvc.exe]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\igfxdev.dll]  [Intel Corporation, 7.14.10.1329]
[PID: 2268 / maggie][C:\Program Files\Windows Sidebar\sidebar.exe]  [Microsoft Corporation, 6.0.6000.16615 (vista_gdr.071215-2230)]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\system32\icm32.dll]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 2280 / maggie][C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe]  [, 1, 0, 0, 1]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 2612 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe]  [AVG Technologies CZ, s.r.o., 8.0.0.100]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\AVG\AVG8\avglogx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\PROGRA~1\AVG\AVG8\avgwd.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.100]
[C:\PROGRA~1\AVG\AVG8\avgcfgx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.86]
[C:\PROGRA~1\AVG\AVG8\avgsched.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\PROGRA~1\AVG\AVG8\avgwdwsc.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\PROGRA~1\AVG\AVG8\avglngx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.93]
[PID: 2624 / SYSTEM][C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe]  [TOSHIBA CORPORATION, 7, 0, 1, 6]
[C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll]  [TOSHIBA CORPORATION, 7, 0, 1, 19]
[C:\Program Files\TOSHIBA\ConfigFree\CFWLAPI.dll]  [TOSHIBA CORPORATION, 1, 0, 0, 12]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 12]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
[PID: 2656 / SYSTEM][C:\Program Files\ESET\ESET Smart Security\ekrn.exe]  [ESET, 3.0.669 ]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\ESET\ESET Smart Security\ekrnScan.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\ekrnAmon.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\ekrnEmon.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\ekrnEpfw.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\ekrnSmon.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\ekrnUpdate.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\updater.dll]  [ESET, 3.0.669 ]
[C:\Program Files\ESET\ESET Smart Security\ekrnMailPlugins.dll]  [ESET, 3.0.669 ]
[PID: 2808 / SYSTEM][c:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe]  [O2Micro International, 1, 0, 0, 3]
[PID: 2896 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 2908 / SYSTEM][C:\Windows\system32\rpcnet.exe]  [Absolute Software Corp., 8.0.857.0]
[C:\Windows\system32\rpcnet.dll]  [Absolute Software Corp., 8.0.857.0]
[PID: 2956 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 3452 / SYSTEM][C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe]  [TOSHIBA Corporation, 1.00.0003]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
[PID: 3704 / SYSTEM][C:\Windows\system32\TODDSrv.exe]  [TOSHIBA Corporation, 1, 0, 0, 5]
[PID: 1280 / SYSTEM][C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe]  [TOSHIBA Corporation, 1.0.0.3]
[C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll]  [TOSHIBA Corporation, 1.0.0.2]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll]  [TOSHIBA Corporation, 1, 0, 0, 1]
[PID: 2528 / SYSTEM][C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe]  [TOSHIBA Corporation, 1, 0, 0, 1]
[PID: 3056 / SYSTEM][C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe]  [Ulead Systems, Inc., 1, 0, 0, 4]
[PID: 3076 / SYSTEM][C:\Windows\System32\svchost.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 3188 / SYSTEM][C:\Windows\system32\SearchIndexer.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 3344 / SYSTEM][C:\Windows\system32\DRIVERS\xaudio.exe]  [Conexant Systems, Inc., 1.00.15.00]
[PID: 2972 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgrsx.exe]  [AVG Technologies CZ, s.r.o., 8.0.0.84]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\AVG\AVG8\avglogx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\PROGRA~1\AVG\AVG8\avgcorex.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.88]
[C:\PROGRA~1\AVG\AVG8\avgcrlpx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[PID: 1792 / SYSTEM][C:\Windows\system32\taskeng.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 3212 / LOCAL SERVICE][C:\Windows\System32\alg.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 3984 / maggie][C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe]  [TOSHIBA CORPORATION, 7, 0, 1, 8]
[C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll]  [TOSHIBA CORPORATION, 7, 0, 1, 19]
[C:\Program Files\TOSHIBA\ConfigFree\CFWLAPI.dll]  [TOSHIBA CORPORATION, 1, 0, 0, 12]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 12]
[C:\Program Files\TOSHIBA\ConfigFree\NDSParts.dll]  [TOSHIBA CORPORATION, 7, 0, 1, 8]
[C:\Program Files\TOSHIBA\ConfigFree\NDSNLS.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 5]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 704 / maggie][C:\Program Files\Apoint2K\ApMsgFwd.exe]  [Alps Electric Co., Ltd., 7, 0, 0, 5]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 4068 / maggie][C:\Program Files\Apoint2K\HidFind.exe]  [Alps Electric Co., Ltd., 7.0.0.26]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 4084 / maggie][C:\Program Files\Apoint2K\Apntex.exe]  [Alps Electric Co., Ltd., 7.0.1.26]
[C:\Windows\system32\VXDIF.DLL]  [Alps Electric Co., Ltd., 6.0.3.18]
[C:\Program Files\Apoint2K\ApCommon.DLL]  [Alps Electric Co., Ltd., 6.0.2.47]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[PID: 2608 / maggie][C:\Program Files\Internet Explorer\ieuser.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1329]
[PID: 3176 / maggie][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 7.00.6000.16386 (vista_rtm.061101-2205)]
[C:\Windows\system32\avgrsstx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL]  [AVG, Technologies CZ, s.r.o                , 5.0.2.387]
[C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.5.29]
[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
[C:\Program Files\AVG\AVG8\avgssie.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.101]
[C:\Program Files\AVG\AVG8\avgxpl.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.88]
[C:\Program Files\AVG\AVG8\avgcfgx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.86]
[C:\Program Files\AVG\AVG8\avglogx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\Program Files\AVG\AVG8\avglngx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.93]
[C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll]  [China Merchants Bank, 1, 0, 0, 1]
[C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll]  [Sun Microsystems, Inc., 6.0.30.5]
[C:\Program Files\Java\jre1.6.0_03\bin\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 8, 96]
[C:\Windows\system32\CITICSPP.dll]  [ISRA, 1, 0, 0, 1]
[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Windows\system32\cssrhplus.dll]  [ChinaStar Studio, 1, 0, 0, 2]
[C:\Windows\system32\Macromed\Flash\Flash9f.ocx]  [Adobe Systems, Inc., 9,0,124,0]
[C:\Windows\system32\igdumd32.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Program Files\PPStream\codec\rmsplt.ax]  [Gabest, 1, 0, 1, 2]
[C:\Program Files\Common Files\Ulead Systems\MPEG\Ulspmpeg.ax]  [ULead Systems, 1, 0, 0, 105]
[C:\Program Files\Common Files\Ulead Systems\MPEG\mcmpgdec.dll]  [Ulead Systems, Inc., official release build]
[C:\Program Files\Common Files\Ulead Systems\MPEG\mpegin.dll]  [Ulead Systems, Inc, official release build]
[C:\Program Files\VIEWGOOD\WebPlayer 2007\WebPlayer6\MpegSplitter.ax]  [南京远古科技有限公司, 6, 0, 0, 0]
[C:\Program Files\VIEWGOOD\WebPlayer 2007\WebPlayer6\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\VIEWGOOD\WebPlayer 2007\Codecs\ac3\ac3filter.ax]  [, 1.01a]
[PID: 2124 / maggie][C:\PROGRA~1\AVG\AVG8\aAvgApi.exe]  [, 2.0.0.15]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\AVG\AVG8\avgtbapi.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.99]
[C:\Program Files\AVG\AVG8\avglogx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\Program Files\AVG\AVG8\avgxpl.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.88]
[C:\Program Files\AVG\AVG8\avgcfgx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.86]
[C:\Program Files\AVG\AVG8\avglngx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.93]
[PID: 3692 / maggie][C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe]  [Microsoft Corporation, 4.200.520.1]
[PID: 4456 / maggie][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 7.00.6000.16386 (vista_rtm.061101-2205)]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL]  [AVG, Technologies CZ, s.r.o                , 5.0.2.387]
[C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.5.29]
[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
[C:\Program Files\AVG\AVG8\avgssie.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.101]
[C:\Program Files\AVG\AVG8\avgxpl.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.88]
[C:\Program Files\AVG\AVG8\avgcfgx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.86]
[C:\Program Files\AVG\AVG8\avglogx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.80]
[C:\Program Files\AVG\AVG8\avglngx.dll]  [AVG Technologies CZ, s.r.o., 8.0.0.93]
[C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll]  [China Merchants Bank, 1, 0, 0, 1]
[C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll]  [Sun Microsystems, Inc., 6.0.30.5]
[C:\Program Files\Java\jre1.6.0_03\bin\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 8, 96]
[C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 20]
[C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 16]
[C:\Windows\system32\CITICSPP.dll]  [ISRA, 1, 0, 0, 1]
[C:\Windows\system32\igdumd32.dll]  [Intel Corporation, 7.14.10.1329]
[C:\Program Files\Rising\RavOL\RavOLCtl.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.16]
[C:\Program Files\Rising\RavOL\ScanStub.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.2]
[C:\Program Files\Rising\RavOL\REComp.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 39]
[C:\Program Files\Rising\RavOL\refs.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 17]
[C:\Program Files\Rising\RavOL\viruslib.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 26]
[C:\Program Files\Rising\RavOL\relibldr.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]
[PID: 5672 / SYSTEM][C:\Program Files\Rising\RavOL\RsOLHost.exe]  [Beijing Rising Technology Co., Ltd., 20.0.0.6]
[C:\Program Files\Rising\RavOL\oscanner.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.6]
[C:\Program Files\Rising\RavOL\recomp.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 39]
[C:\Program Files\Rising\RavOL\refs.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 17]
[C:\Program Files\Rising\RavOL\viruslib.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 26]
[C:\Program Files\Rising\RavOL\relibldr.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]
[C:\Program Files\Rising\RavOL\mvengine.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]
[C:\Program Files\Rising\RavOL\posttrt.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 22]
[C:\Program Files\Rising\RavOL\ffr.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 15]
[C:\Program Files\Rising\RavOL\nvfile.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 6]
[C:\Program Files\Rising\RavOL\scanexec.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]
[C:\Program Files\Rising\RavOL\unexe.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 5]
[C:\Program Files\Rising\RavOL\scanex.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 82]
[C:\Program Files\Rising\RavOL\pearc.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 5]
[C:\Program Files\Rising\RavOL\extfile.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 29]
[C:\Program Files\Rising\RavOL\scanpack.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]
[C:\Program Files\Rising\RavOL\revm.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 8]
[C:\Program Files\Rising\RavOL\urutils.dll]  [, 20, 0, 0, 6]
[C:\Program Files\Rising\RavOL\ur000.dat]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 18]
[C:\Program Files\Rising\RavOL\extole.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 12]
[C:\Program Files\Rising\RavOL\extmail.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]
[C:\Program Files\Rising\RavOL\scansct.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]
[C:\Program Files\Rising\RavOL\scriptci.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]
[C:\Program Files\Rising\RavOL\ur001.dat]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]
[C:\Program Files\Rising\RavOL\scanmac.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]
[PID: 3656 / maggie][C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe]  [Adobe Systems, Inc., 9,0,124,0]
[PID: 4948 / maggie][F:\SREngLdr.EXE]  [Smallfrogs Studio, 2.6.12.1018]
[PID: 2472 / maggie][F:\SREce5088ab.EXE]  [Smallfrogs Studio, 2.6.12.1018]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
[C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.762]

==================================
文件关联
.TXT  Error. [C:\Windows\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["%SystemRoot%\hh.exe" %1]
.HLP  OK. [%SystemRoot%\winhlp32.exe %1]
.INI  Error. [C:\Windows\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1    localhost
::1          localhost

==================================
进程特权扫描
N/A

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================****

TOP

eyeego

剑盟病毒救援小组

Rank: 10

UID: 241761
积分: 764
活跃度: 1905

热心会员勋章我的中国心

发短消息
加为好友
当前在线

地板大中小发表于 2008-7-18 20:10 只看该作者

1.建议使用XDelBox删除以下文件：(XDelBox1.7下载)
使用说明：删除时复制所有要删除文件的路径，在待删除文件列表里点击右键选择从剪贴板导入，导入后在要删除文件上点击右键，选择立刻重启删除(请勾上“抑制再生”的选项），电脑会重启进入DOS界面进行删除操作。运行xdelbox前最好卸载所有可移动存储介质（包括U盘，MP3，手机存储卡等）。

c:\windows\system32\drivers\protectora.sys
c:\windows\system32\drivers\protector.sys
c:\program files\jumpstart\jswtrayutil.exe

2.删除重启后使用SREng修复下面各项：

启动项目－－注册表之如下项删除：
[jswtrayutil] <"C:\Program Files\Jumpstart\jswtrayutil.exe">

启动项目－－服务－－驱动程序之如下项删除：
[ProtectorA / ProtectorA] <system32\drivers\ProtectorA.sys>
[Protector / Protector] <\??\C:\Windows\system32\drivers\Protector.sys>

TOP

byxxdrls

版主

Rank: 11

UID: 259456
积分: 1123
活跃度: 2794

热心会员勋章我的中国心

发短消息
加为好友
当前在线

5楼大中小发表于 2008-7-19 07:29 只看该作者

回复地板的帖子

[jswtrayutil] <"C:\Program Files\Jumpstart\jswtrayutil.exe">

我在一个帖子中看到，一台东芝笔记本的启动项中也有这个。也没查出这个启动项有什么问题。请慎重考虑。

请楼主用冰刃试试把这个文件拷贝出来，或者删除掉。

[ 本帖最后由 byxxdrls 于 2008-7-19 08:24 编辑 ]