各位高手:
非常感谢您留心我这份系统诊断报告,小菜鸟十万火急等待您的帮助!
该诊断报告由360安全卫士提供
http://www.360safe.com
诊断时间: 2007-07-26 18:27:45
诊断平台: Windows Vista (TM) Home Premium
IE版本: Internet Explorer V7.0.6000.16473 Build:76000
计算机物理内存:2.00GB - 当前可用内存:410.14MB
100 - 未知 - Process: lsm.exe [本地会话管理器服务] -
100 - 未知 - Process: audiodg.exe [] -
100 - 未知 - Process: DQLWinService.exe [DQLWinSe Application] -
100 - 未知 - Process: DTSRVC.exe [] -
100 - 未知 - Process: SearchIndexer.exe [Microsoft Windows Search Indexer] -
100 - 未知 - Process: WUDFHost.exe [Windows 驱动程序基础 - 用户模式驱动程序框架主机进程] -
100 - 未知 - Process: hpsysdrv.exe [hpsysdrv] -
100 - 未知 - Process: OSD.exe [OsdMaestro main program] -
100 - 未知 - Process: RtHDVCpl.exe [HD Audio Control Panel] -
100 - 未知 - Process: wpCtrl.exe [] -
100 - 未知 - Process: dthtml.exe [HP My Display] -
100 - 未知 - Process: GooglePinyinDaemon.exe [Google Pinyin Network Daemon] -
100 - 未知 - Process: p2phost.exe [网络邻居] -
100 - 未知 - Process: wmpnscfg.exe [Windows Media Player 网络共享服务配置应用程序] -
100 - 未知 - Process: SnagIt32.exe [SnagIt 8] -
100 - 未知 - Process: wmpnetwk.exe [Windows Media Player 网络共享服务] -
100 - 未知 - Process: Floater.exe [] -
100 - 未知 - Process: HookManager.exe [Context Menu Utility] -
100 - 未知 - Process: SnagPriv.exe [SnagIt RPC Helper] -
100 - 未知 - Process: usnsvc.exe [Messenger Sharing USN Journal Reader Service] -
100 - 未知 - Process: CCU_Engine.exe [Intel? Viiv? Settings] -
100 - 未知 - Process: AlertService.exe [Intel? Alert Service] -
R0 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=ZH_CN&c=73&bd=Pavilion&pf=desktop
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.alexa.com/?p=home
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page=http://www.google.com
R0 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=ZH_CN&c=73&bd=Pavilion&pf=desktop
R1 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar=http://www.google.com/ie
R1 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Use Search Asst=no
O1 - 未知 - Host: ::1 localhost
O2 - 未知 - BHO: (浏览器辅助对象(BHO)) - [无效的CLSID:{7E853D72-626A-48EC-A868-BA8D5E23E045}] - {7E853D72-626A-48EC-A868-BA8D5E23E045} -
O4 - 未知 - HKLM\..\Run: [OsdMaestro] [OsdMaestro main program] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - 未知 - HKLM\..\Run: [NvSvc] [NVIDIA Driver Helper Service, Version 158.22] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - 未知 - HKLM\..\Run: [RtHDVCpl] [HD Audio Control Panel] RtHDVCpl.exe
O4 - 未知 - HKLM\..\Run: [CCUTRAYICON] [] FactoryMode
O4 - 未知 - HKLM\..\Run: [PivotSoftware] [] "C:\Program Files\Portrait Displays\Pivot Software\wpctrl.exe"
O4 - 未知 - HKLM\..\Run: [DT HPW] [] C:\Program Files\Portrait Displays\HP My Display\DTHtml.exe -startup_folder
O4 - 未知 - HKLM\..\Run: [Google IME Autoupdater] [Google Pinyin Network Daemon] "C:\Program Files\Google\Google Pinyin\GooglePinyinDaemon.exe"
O4 - 未知 - HKLM\..\Run: [Microsoft Pinyin IME Migration] [Microsoft Pinyin IME 2007] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCMIG.EXE /INSTALL
O4 - 未知 - HKCU\..\Run: [ehTray.exe] [Media Center Tray Applet] C:\Windows\ehome\ehTray.exe
O4 - 未知 - HKCU\..\Run: [CollaborationHost] [] C:\Windows\system32\p2phost.exe -s
O4 - 未知 - HKCU\..\Run: [Speech Recognition] [语音识别] "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
O4 - 未知 - HKCU\..\Run: [WMPNSCFG] [Windows Media Player 网络共享服务配置应用程序] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - 未知 - Startup folder: [Canon LBP-810 Status Window.LNK] [] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LBP-810 Status Window.LNK
O8 - 未知 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - 未知 - Extra context menu item: &使用超级旋风下载 - C:\Program Files\Tencent\QQDownload\geturl.htm
O8 - 未知 - Extra context menu item: &使用超级旋风下载全部链接 - C:\Program Files\Tencent\QQDownload\getAllurl.htm
O8 - 未知 - Extra context menu item: Alexa Web Search - http://client.alexa.com/holiday/script/actions/search.htm
O8 - 未知 - Extra context menu item: Get Alexa Data - http://client.alexa.com/holiday/script/actions/sitedata.htm
O8 - 未知 - Extra context menu item: Google AdSense Preview Tool - http://pagead2.googlesyndication ... iew/en/preview.html
O8 - 未知 - Extra context menu item: Mail to a Friend... - http://client.alexa.com/holiday/script/actions/mailto.htm
O8 - 未知 - Extra context menu item: See Related Links - http://client.alexa.com/holiday/script/actions/related.htm
O8 - 未知 - Extra context menu item: Write a Review... - http://client.alexa.com/holiday/script/actions/review.htm
O8 - 未知 - Extra context menu item: 导出到 Microsoft Excel(&X) - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - 未知 - Extra context menu item: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - 未知 - Extra context menu item: 设为 Messenger Live 头像 - \SetMSNDP.htm
O9 - 未知 - Extra button: Research(HKLM) - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O18 - 未知 - Protocol: Microsoft Office InfoPath XML Mime Filter - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O18 - 未知 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - 未知 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - 未知 - AppInit DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - 未知 - Service: AlertService [This service reports the notices from Intel Viiv software. If this service is stopped or disabled, components of Intel Viiv software that depend on the notices will not receive them.] - "C:\Program Files\Intel\IntelDH\CCU\AlertService.exe" - (running)
O23 - 未知 - Service: AVP [Provides protection against computer viruses and another dangerous software.] - "C:\Program Files\AOL\Active Virus Shield\avp.exe" -r - (running)
O23 - 未知 - Service: DPS [@%systemroot%\system32\dps.dll,-501] - C:\Windows\system32\dps.dll - (error)
O23 - 未知 - Service: DQLWinService [DQLWinService] - "C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe" - (running)
O23 - 未知 - Service: DTSRVC [Provides support for applications that control display settings.] - C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe - (running)
O23 - 未知 - Service: ehRecvr [@%SystemRoot%\ehome\ehrecvr.exe,-102] - C:\Windows\ehome\ehRecvr.exe - (running)
O23 - 未知 - Service: ehSched [@%SystemRoot%\ehome\ehsched.exe,-102] - C:\Windows\ehome\ehsched.exe - (running)
O23 - 未知 - Service: ehstart [@%SystemRoot%\ehome\ehstart.dll,-102] - C:\Windows\ehome\ehstart.dll - (not running)
O23 - 未知 - Service: Eventlog [@%SystemRoot%\system32\wevtsvc.dll,-201] - C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted - (running)
O23 - 未知 - Service: GoogleDesktopManager [GoogleDesktopManager] - "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" - (not running)
O23 - 未知 - Service: gusvc [Google Updater Service] - "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" - (not running)
O23 - 未知 - Service: idsvc [@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8192] - "C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" - (error)
O23 - 未知 - Service: IntelDHSvcConf [Intel DH Service] - "C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe" - (not running)
O23 - 未知 - Service: ISSM [Intel(R) Software Services Manager] - "C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe" - (not running)
O23 - 未知 - Service: M1 Server [Intel(R) Viiv(TM) Media Server] - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe - (not running)
O23 - 未知 - Service: MCLServiceATL [Intel(R) Application Tracker] - "C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe" - (not running)
O23 - 未知 - Service: Mcx2Svc [@%SystemRoot%\ehome\ehres.dll,-15502] - C:\Windows\system32\Mcx2Svc.dll - (not running)
O23 - 未知 - Service: MSiSCSI [@%SystemRoot%\system32\iscsidsc.dll,-5001] - C:\Windows\system32\iscsiexe.dll - (not running)
O23 - 未知 - Service: msiserver [@%SystemRoot%\system32\msimsg.dll,-32] - C:\Windows\system32\msiexec /V - (not running)
O23 - 未知 - Service: NetTcpPortSharing [@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8200] - "C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" - (not running)
O23 - 未知 - Service: nsi [@%SystemRoot%\system32\nsisvc.dll,-201] - C:\Windows\system32\nsisvc.dll - (running)
O23 - 未知 - Service: odserv [运行部分 Microsoft Office 诊断。] - "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE" - (not running)
O23 - 未知 - Service: pla [@%systemroot%\system32\pla.dll,-501] - C:\Windows\system32\pla.dll - (running)
O23 - 未知 - Service: PolicyAgent [@%SystemRoot%\system32\polstore.dll,-5011] - C:\Windows\System32\ipsecsvc.dll - (running)
O23 - 未知 - Service: Remote UI Service [Intel(R) Remoting Service] - "C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe" - (not running)
O23 - 未知 - Service: RoxMediaDB9 [Roxio RoxMediaDB9 Service] - "c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe" - (not running)
O23 - 未知 - Service: SCardSvr [@%SystemRoot%\System32\SCardSvr.dll,-5] - C:\Windows\System32\SCardSvr.dll - (error)
O23 - 未知 - Service: stllssvr [stllssvr] - "c:\Program Files\Common Files\SureThing Shared\stllssvr.exe" - (not running)
O23 - 未知 - Service: usnjsvc [Messenger 上安装的启用共享情况的服务] - "C:\Program Files\MSN Messenger\usnsvc.exe" - (running)
O23 - 未知 - Service: WPCSvc [@%SystemRoot%\system32\wpcsvc.dll,-101] - C:\Windows\System32\wpcsvc.dll - (not running)
O23 - 未知 - Service: wuauserv [@%systemroot%\system32\wuaueng.dll,-106] - C:\Windows\system32\wuaueng.dll - (running)
O28 - 未知 - IELINK: C:\Users\郑界涵\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\ACCESS~1\SYSTEM~1\INTERN~1.LNK - -extoff
=======================================
100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量,ms-dos驱动名称类似lpt1以及com,调用win32壳子系统和运行在windows登陆过程。] -
100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] -
100 - 安全 - Process: wininit.exe [Windows启动应用程序。] -
100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] -
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] -
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] -
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: SLsvc.exe [微软软件授权服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序,用以打印机就绪。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: LSSrvc.exe [一款名为LightScribe(光雕技术)的刻录机,可以在光盘上光雕个性化图案。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] -
100 - 安全 - Process: taskeng.exe [Windows任务计划程序引擎。] -
100 - 安全 - Process: CAPRPCSK.EXE [佳能相关产品。] -
100 - 安全 - Process: CAPPSWK.EXE [佳能公司出品的激光打印机相关驱动程序。] -
100 - 安全 - Process: taskeng.exe [Windows任务计划程序引擎。] -
100 - 安全 - Process: dwm.exe [Windows桌面窗口管理器。] -
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell,包括开始菜单、任务栏,桌面和文件管理。] -
100 - 安全 - Process: MSASCui.exe [微软反间谍软件windows defender的程序。 ] -
100 - 安全 - Process: rundll32.exe [windows rundll32为了需要调用dlls的程序。] -
100 - 安全 - Process: hpwuSchd2.exe [惠普公司出品的相关产品的更新升级程序。] -
100 - 安全 - Process: GoogleDesktop.exe [google.com出品的桌面搜索软件。] -
100 - 安全 - Process: rundll32.exe [windows rundll32为了需要调用dlls的程序。] -
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: realsched.exe [realone播放器安装时附带的升级提醒程序。] -
100 - 安全 - Process: ehtray.exe [微软出品的winxp媒体中心软件的相关程序。] -
100 - 安全 - Process: CAPPSWK.EXE [佳能公司出品的激光打印机相关驱动程序。] -
100 - 安全 - Process: CAPPSWK.EXE [佳能公司出品的激光打印机相关驱动程序。] -
100 - 安全 - Process: GoogleDesktop.exe [google.com出品的桌面搜索软件。] -
100 - 安全 - Process: ehmsas.exe [微软出品的winxp媒体中心软件的相关程序。] -
100 - 安全 - Process: ehsched.exe [微软出品的winxp媒体中心软件的相关程序。] -
100 - 安全 - Process: GoogleDesktop.exe [google.com出品的桌面搜索软件。] -
100 - 安全 - Process: GoogleDesktopQQPlugin.exe [google 桌面搜索软件相关程序。] -
100 - 安全 - Process: TscHelp.exe [一款名为snagit的屏幕、文本和视频捕获与转换程序相关插件。] -
100 - 安全 - Process: kbd.exe [惠普公司出品的相关软件。] -
100 - 安全 - Process: QQDownload.exe [超级旋风下载组件相关程序。] -
100 - 安全 - Process: ehrecvr.exe [微软出品的winxp媒体中心软件的相关程序。] -
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: 360Safe.exe [360安全卫士相关程序。] -
100 - 安全 - Process: 360tray.exe [360安全卫士实时监控程序。] -
R0 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page=http://go.microsoft.com/fwlink/?LinkId=54896
R0 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL=http://go.microsoft.com/fwlink/?LinkId=54896
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\Windows\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\Windows\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default)=http://www.google.com/keyword/%s
O2 - 安全 - BHO: (QQCycloneHelper Class) - [腾讯出品的超级旋风下载组件相关文件。] - {00000000-12C9-4305-82F9-43058F20E8D2} - C:\Program Files\Tencent\QQDownload\QQIEHelper01.dll
O2 - 安全 - BHO: (SnagIt Toolbar Loader) - [SnagIt 8, 屏幕、文本和视频捕获与转换程序。] - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - 安全 - BHO: (Adobe PDF Reader Link Helper) - [Adobe Reader, 查看和打印 Adobe 便携文档格式 (PDF) 文件。] - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - 安全 - BHO: (Windows Live Sign-in Helper) - [windows live多用户登陆助手相关插件。] - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - 安全 - BHO: (Google Toolbar Helper) - [Google搜索工具条。] - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - 安全 - BHO: (Windows Live Toolbar Helper) - [MSN 搜索工具栏,搜索工具栏。] - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - 安全 - Toolbar: (&Google) - [Google IE 客户端工具栏。] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - 安全 - Toolbar: (SnagIt) - [一款名为snagit的屏幕、文本和视频捕获与转换程序相关插件。] - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O3 - 安全 - Toolbar: (Windows Live Toolbar) - [MSN工具栏相关程序。] - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - 安全 - Toolbar: (Alexa) - [Alexa工具条相关文件。] - {3CEFF6CD-6F08-4e4d-BCCD-FF7415288C3B} - C:\Windows\system32\SHDOCVW.DLL
O4 - 安全 - HKLM\..\Run: [hpsysdrv] [hp公司软件。] c:\hp\support\hpsysdrv.exe
O4 - 安全 - HKLM\..\Run: [KBD] [惠普出品的相关软件。] C:\HP\KBD\KbdStub.EXE
O4 - 安全 - HKLM\..\Run: [NvCplDaemon] [是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - 安全 - HKLM\..\Run: [NvMediaCenter] [是NVidia显示卡相关文件。] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - 安全 - HKLM\..\Run: [HP Software Update] [惠普软件升级程序。] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - 安全 - HKLM\..\Run: [CAPON] [佳能公司出品的打印机相关程序。] C:\Windows\system32\Spool\Drivers\w32x86\3\CAPONN.EXE
O4 - 安全 - HKLM\..\Run: [Google Desktop Search] [google推出的一款桌面搜索软件。] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - 安全 - HKLM\..\Run: [AVP] [卡巴斯基杀毒软件相关程序。] "C:\Program Files\AOL\Active Virus Shield\avp.exe"
O4 - 安全 - HKLM\..\Run: [TkBellExe] [是Real Networks产品定时升级检测程序。] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - 安全 - HKLM\..\Run: [360Safetray] [360safe实时保护功能模块。] C:\Program Files\360safe\safemon\360Tray.exe /start
O4 - 安全 - HKCU\..\Run: [WindowsWelcomeCenter] [Windows Vista操作系统欢迎中心] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - 安全 - HKCU\..\Run: [MsnMsgr] [微软msn即时通讯工具] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - 安全 - HKCU\..\Run: [QQDownload] [超级旋风下载组件相关程序。] "C:\Program Files\Tencent\QQDownload\QQDownload.exe" autostart
O4 - 安全 - Startup folder: [SnagIt 8.lnk] [SnagIt 8, 屏幕、文本和视频捕获与转换程序,是一个截图工具。] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SnagIt 8.lnk
O4 - 安全 - Startup folder: [腾讯QQ.lnk] [qq:即时通讯软件] C:\Users\郑界涵\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\腾讯QQ.lnk
O9 - 安全 - Extra button: 电台(HKLM) - C:\Windows\web\related.htm
O11 - 安全 - Options Group: International*
O23 - 安全 - Service: BthServ [蓝牙支持服务。] - C:\Windows\System32\bthserv.dll - (running)
O23 - 安全 - Service: LightScribeService [一个来自dvd刻录机\\\"光雕\\\"软件的相关程序,通过用户许可协议安装。] - "c:\Program Files\Common Files\LightScribe\LSSrvc.exe" - (running)
O23 - 安全 - Service: SNMPTRAP [微软Microsoft Windows操作系统相关程序,用于监听简单网络管理协议SNMP的消息。] - C:\Windows\System32\snmptrap.exe - (not running)
O25 - 安全 - ABOUT: DesktopItemNavigationFailure - res://ieframe.dll/navcancl.htm
O25 - 安全 - ABOUT: NavigationCanceled - res://ieframe.dll/navcancl.htm
O25 - 安全 - ABOUT: NavigationFailure - res://ieframe.dll/navcancl.htm
O25 - 安全 - ABOUT: OfflineInformation - res://ieframe.dll/offcancl.htm
O25 - 安全 - ABOUT: PostNotCached - res://ieframe.dll/repost.htm
=======================================
O31 - 未知 - Other Autoruns: Kmode - \SystemRoot\System32\win32k.sys - - - - 0 -
O31 - 未知 - Other Autoruns: - C:\Windows\Explorer.exe /separate,/e - - - - 0 -
O31 - 未知 - Folder Menu: {F9DB5320-233E-11D1-9F84-707F02C10627} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll - Adobe Systems, Inc. - PDF Shell Extension - 8.0.0.0 - 372736 - a9b3b4a762963be8cac715bef5068232
O31 - 未知 - Notify: klogon - C:\Windows\system32\klogon.dll - Kaspersky Lab - Logon Visualizer - 6.0.2.621 - 200768 - 2fb94ab158eb54a2212c8087b7e72340
O31 - 未知 - SEApproved: {b2c761c6-29bc-4f19-9251-e6195265baf1} - - - - - 0 -
O31 - 未知 - SEApproved: {7A979262-40CE-46ff-AEEE-7884AC3B6136} - - - - - 0 -
O31 - 未知 - SEApproved: {3e7efb4c-faf1-453d-89eb-56026875ef90} - - - - - 0 -
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:ActiveDirectory Folder - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:ActiveDirectory Folder - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Sam Account Folder - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Sam Account Folder - - - - - 0 -
O31 - 未知 - SEApproved: {5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0} - - - - - 0 -
O31 - 未知 - SEApproved: {E44E5D18-0652-4508-A4E2-8A090067BCB0} - - - - - 0 -
O31 - 未知 - SEApproved: {6dfd7c5c-2451-11d3-a299-00c04f8ef6af} - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Explorer Query Band - - - - - 0 -
O31 - 未知 - SEApproved: {38a98528-6cbf-4ca9-8dc0-b1e1d10f7b1b} - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Contacts folder - - - - - 0 -
O31 - 未知 - SEApproved: {4026492f-2f69-46b8-b9bf-5654fc07e423} - - - - - 0 -
O31 - 未知 - SEApproved: {fcfeecae-ee1b-4849-ae50-685dcf7717ec} - - - - - 0 -
O31 - 未知 - SEApproved: {a304259d-52b8-4526-8b1a-a1d6cecc8243} - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:.cab or .zip files - - - - - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Windows Search Shell Service - - - - - 0 -
O31 - 未知 - SEApproved: {d3e34b21-9d75-101a-8c3d-00aa001a1652} - - - - - 0 -
O31 - 未知 - SEApproved: {00f2886f-cd64-4fc9-8ec5-30ef6cdbe8c3} - - - - - 0 -
O31 - 未知 - SEApproved: {9D687A4C-1404-41ef-A089-883B6FBECDE6} - - - - - 0 -
O31 - 未知 - SEApproved: {37efd44d-ef8d-41b1-940d-96973a50e9e0} - - - - - 0 -
O31 - 未知 - SEApproved: {67718415-c450-4f3c-bf8a-b487642dc39b} - - - - - 0 -
O31 - 未知 - SEApproved: {d8559eb9-20c0-410e-beda-7ed416aecc2a} - - - - - 0 -
O31 - 未知 - SEApproved: {5ea4f148-308c-46d7-98a9-49041b1dd468} - - - - - 0 -
O31 - 未知 - SEApproved: {031EE060-67BC-460d-8847-E4A7C5E45A27} - - - - - 0 -
O31 - 未知 - SEApproved: {7dda204b-2097-47c9-8323-c40bb840ae44} - - - - - 0 -
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} - - - - - 0 -
O31 - 未知 - SEApproved: {7F67036B-66F1-411A-AD85-759FB9C5B0DB} - C:\Windows\System32\ShellvRTF.dll - XSS - ShellvRTF - 1.1.0.5 - 237568 - 91fa8d1db1ec243cecd4a0977c91cc6f
O31 - 未知 - SEApproved: {654D0431-C930-43C4-B8DA-9AA01BA5B486} - C:\Program Files\Common Files\Portrait Displays\Shared\HtmlEngine.dll - Portrait Displays, Inc - HTML UI Engine - 1.0.0.1 - 139264 - ac85ddbf80848ee56f063fa82953a095
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll - - - - 128512 - 2b7421a2351fbfa6e29141c46aea6b57
O31 - 未知 - SEApproved: {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} - C:\Program Files\Real\RealPlayer\rpshell.dll - RealNetworks, Inc. - RealPlayer Shell Extensions - 1.0.1.1946 - 49198 - 68718fbfe1513aaeed9bf319d912bb47
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll - - - - 128512 - 2b7421a2351fbfa6e29141c46aea6b57
O31 - 未知 - LSA: Security Packages - sv1_0.dll - - - - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll - - - - 0 -
O31 - 未知 - LSA: Security Packages - digest.dll - - - - 0 -
O31 - 未知 - LSA: Security Packages - spkg.dll - - - - 0 -
=======================================
O40 - Explorer.EXE - - C:\Program Files\Portrait Displays\Pivot Software\winphook.dll - - 2b7f2d5b4c86f06d931a14441d4f187b
O40 - Explorer.EXE - - C:\Program Files\Common Files\Portrait Displays\Shared\dthook.dll - - fadefb390846b3a5be0bf4e8e53defea
O40 - Explorer.EXE - - C:\Program Files\Common Files\Portrait Displays\Shared\PresetsCOM.dll - - f26cb98b91afd7be723c80909ae5f418
O40 - Explorer.EXE - Microsoft Corporation - C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\MFC80.DLL - MFCDLL Shared Library - Retail Version - 56931baf613550ce64141be8153d03ac
O40 - Explorer.EXE - Microsoft Corporation - C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\MFC80CHS.DLL - MFC Language Specific Resources - f6133b250f6bd0cc875bba1960676cfa
O40 - Explorer.EXE - Kaspersky Lab - C:\Program Files\AOL\Active Virus Shield\ShellEx.dll - Windows Shell Extension - 64ae3b590c2e6e50c2b84ab4b2dd12cf
O40 - rundll32.exe - - C:\Program Files\Portrait Displays\Pivot Software\winphook.dll - - 2b7f2d5b4c86f06d931a14441d4f187b
O40 - rundll32.exe - - C:\Program Files\Portrait Displays\Pivot Software\winphook.dll - - 2b7f2d5b4c86f06d931a14441d4f187b
=======================================
O41 - Cdsys - Cdsys - C:\Windows\system32\cdcd.sys - (not running) - - -
=======================================
360Safe.exe=3.5.2.1005
AntiAdwa.dll=3.5.1.1001
AntiEng.dll=3.5.2.1002
AntiActi.dll=2.0.0.3000
CleanHis.dll=3.0.2.1000
live.dll=1.0.1.1018
=======================================
操作历史报告:
2007-07-20 16:48
清理好评插件 - 百度搜索伴侣 - C:\Windows\system32\realname.dat
2007-07-20 16:48
清理好评插件 - 新浪UC -
清理好评插件 - 卡卡上网安全助手 - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\卡卡上网安全助手
2007-07-26 18:26
清理好评插件 - PC蛋蛋 - C:\Windows\system32\PCEggs.dll
=======================================
360安全卫士,彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基V6.0
最新免费下载:
http://www.360safe.com
