绿色家园 » 『系统救援』 » IE主页被改为84817怎么办?

2008-11-18 15:00 Tiger51
IE主页被改为84817怎么办?

IE主页被改为84817,用Windows清理助手清理后,重启电脑,主页又会被改为[url=http://www.84817.com]www.84817.com[/url],而且还会不时自动弹出9878,esscn等垃圾网页;
请大侠帮忙看如何处理?
先谢谢了

2008-11-18 16:07 wildox
建议如下操作:
1. 把浏览器的临时文件,历史纪录,和cookies统统清理掉;
2. 把[url]https://www.84817.cn/[/url]添加到浏览器的受限站点名单中;
3. 把你喜欢的站点设为浏览器主页。
4. 系统启动按F8加入安全模式,用Windows清理助手查杀。

2008-11-18 17:27 shoo
按照这里的处理下:[url]http://bbs.dnwx.com/thread-43290-1-1.html[/url]

如果还有问题,最好上个SREng日志

2008-11-18 20:03 Tiger51
[code]
2008-11-18,19:38:31
System Repair Engineer 2.7.0.1210
Smallfrogs (http://www.KZTechs.com)
Windows XP Professional Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed
Follow item(s) have been selected:
    All Boot Items (Including Registry, Startup Folders, Services and so on)
    Browser Add-ons
    Running Processes (Including process model information)
    File Associations
    Winsock Provider
    Autorun.Inf
    HOSTS File
    Process Privileges Scan
    Scheduled Tasks
    API HOOK
    Hidden Process

Boot Items
Registry
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <TrackPointSrv><C:\Program Files\Lenovo\TrackPoint\tp4serv.exe>  [(Verified)Microsoft Windows Publisher]
    <TpShocks><TpShocks.exe>  [(Verified)Lenovo(Japan)Ltd.]
    <TPHOTKEY><C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe>  [(Verified)Lenovo(Japan)Ltd.]
    <Synchronization Manager><%SystemRoot%\system32\mobsync.exe /logon>  [(Verified)Microsoft Windows Publisher]
    <SoundMAXPnP><C:\Program Files\Analog Devices\Core\smax4pnp.exe>  [(Verified)Microsoft Windows Publisher]
    <SoundMAX><C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray>  [Analog Devices, Inc.]
    <ShStatEXE><"C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE>  [McAfee, Inc.]
    <PHIME2002ASync><C:\WINNT\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Windows Publisher]
    <PHIME2002A><C:\WINNT\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Windows Publisher]
    <McAfeeUpdaterUI><"C:\Program Files\Network Associates\Common Framework\UdaterUI.exe" /StartedFromRunKey>  [(Verified)"McAfee, Inc."]
    <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>  [(Verified)Microsoft Corporation]
    <IMJPMIG8.1><"C:\WINNT\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Publisher]
    <IgfxTray><C:\WINNT\system32\igfxtray.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <HotKeysCmds><C:\WINNT\system32\hkcmd.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <EZEJMNAP><C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe>  [(Verified)Lenovo (Japan) Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINNT\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><%SystemRoot%\system32\webcheck.dll>  [(Verified)Microsoft Windows Publisher]
    <SysTray><C:\WINNT\system32\stobject.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    <WinlogonNotify: igfxcui><igfxdev.dll>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\WINNT\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{51BF0EBA-EEED-4669-95AA-8D17940C6203}]
    <Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 CUSTOM>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINNT\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{4b218e3e-bc98-4770-93d3-2731b9329278}]
    <Internet Explorer><%SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINNT\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\WINNT\system32\Rundll32.exe C:\WINNT\system32\mscories.dll,Install>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{EEBF9CA6-567B-41cd-B5F6-EF2C7FEF37B5}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSectionEx C:\WINNT\INF\wmactedp.inf,PerUserStub,,4>  []
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><logon.scr>  [(Verified)Microsoft Windows Publisher]
==================================
Startup Folders
N/A
==================================
Services
[Ac Profile Manager Service / AcPrfMgrSvc][Running/Auto Start]
  <C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe><Lenovo>
[Access Connections Main Service / AcSvc][Running/Auto Start]
  <C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe><Lenovo>
[Autodesk Licensing Service / Autodesk Licensing Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"><Autodesk>
[Autodesk Network Licensing Service / Autodesk Network Licensing Service][Stopped/Manual Start]
  <C:\Program Files\Common Files\Autodesk Shared\Service\AdskNetSrv.exe><Autodesk, Inc.>
[Bluetooth Service / btwdins][Running/Auto Start]
  <C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe><Broadcom Corporation.>
[Contrl Center of Storm Media / ccosm][Stopped/Disabled]
  <C:\Program Files\StormII\stormliv.exe /asservice><北京暴风网际科技有限公司>
[Cisco Systems, Inc. VPN Service / CVPND][Running/Auto Start]
  <"C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe"><Cisco Systems, Inc.>
[McAfee Host Intrusion Prevention Service / enterceptAgent][Running/Auto Start]
  <"C:\Program Files\McAfee\Host Intrusion Prevention\FireSvc.exe"><McAfee, Inc.>
[Intel(R) PROSet/Wireless Event Log / EvtEng][Running/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\EvtEng.exe><Intel Corporation>
[Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start]
  <C:\WINNT\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe><Microsoft Corporation>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[McAfee HIPSCore Service / hips][Running/Manual Start]
  <"C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPSvc.exe"><McAfee, Inc.>
[ThinkPad PM Service / IBMPMSVC][Running/Auto Start]
  <C:\WINNT\system32\ibmpmsvc.exe><Lenovo>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Windows CardSpace / idsvc][Stopped/Manual Start]
  <"C:\WINNT\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"><Microsoft Corporation>
[IPS Core Service / IPSSVC][Running/Auto Start]
  <C:\WINNT\system32\IPSSVC.EXE><Lenovo Group Limited>
[Tivoli Endpoint / lcfd][Stopped/Manual Start]
  <"C:\Tivoli\lcf\bin\w32-ix86\mrt\lcfd.exe"><N/A>
[McAfee Framework Service / McAfeeFramework][Running/Auto Start]
  <"C:\Program Files\Network Associates\Common Framework\FrameworkService.exe" /ServiceStart><McAfee, Inc.>
[Network Associates McShield / McShield][Running/Auto Start]
  <"C:\Program Files\Network Associates\VirusScan\Mcshield.exe"><McAfee, Inc.>
[Network Associates Task Manager / McTaskManager][Running/Auto Start]
  <"C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe"><Network Associates, Inc.>
[Multi-user Cleanup Service / Multi-user Cleanup Service][Running/Auto Start]
  <"C:\Program Files\lotus\notes\ntmulti.exe"><IBM Corp>
[Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled]
  <"C:\WINNT\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"><Microsoft Corporation>
[PnpWMmng / PnpWMmng][Stopped/Disabled]
  <C:\Tiger\Tools\Greensafetools\流氓软件清理工具绿色版合集\完美卸载插件卸载\PnpWMmng.exe><(File is missing)>
[Intel(R) PROSet/Wireless Registry Service / RegSrvc][Running/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe><Intel Corporation>
[Intel(R) PROSet/Wireless Service / S24EventMonitor][Running/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe><Intel Corporation>
[tp4serv / tp4serv][Running/Auto Start]
  <C:\Program Files\Lenovo\TrackPoint\TP4SERVINST.EXE><Lenovo Group Limited>
[ThinkPad HDD APS Logging Service / TPHDEXLGSVC][Running/Auto Start]
  <System32\TPHDEXLG.exe><(File is missing)>
[IBM KCU Service / TpKmpSVC][Running/Auto Start]
  <C:\WINNT\system32\TpKmpSVC.exe><N/A>
==================================
Drivers
[.sys / .sys][Stopped/Manual Start]
  <\??\C:\WINNT\system32\drivers\.sys><N/A>
[ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
  <system32\drivers\ADIHdAud.sys><Analog Devices, Inc.>
[AE Audio Service / AEAudio][Running/Manual Start]
  <system32\drivers\AEAudio.sys><Andrea Electronics Corporation>
[AEGIS Protocol (IEEE 802.1x) v3.7.5.0 / AegisP][Running/Auto Start]
  <system32\DRIVERS\AegisP.sys><Cisco Systems, Inc.>
[ANC / ANC][Running/System Start]
  <System32\drivers\ANC.SYS><IBM Corp.>
[atmeltpm / atmeltpm][Running/Manual Start]
  <system32\DRIVERS\atmeltpm.sys><Atmel, Inc.>
[Bluetooth Audio Device / btaudio][Stopped/Manual Start]
  <system32\drivers\btaudio.sys><Broadcom Corporation.>
[Bluetooth Virtual Communications Driver / BTDriver][Running/Manual Start]
  <system32\DRIVERS\btport.sys><Broadcom Corporation.>
[Bluetooth Bus Enumerator / BTKRNL][Running/Manual Start]
  <system32\DRIVERS\btkrnl.sys><Broadcom Corporation.>
[Bluetooth LAN Access Server / BTWDNDIS][Stopped/Manual Start]
  <system32\DRIVERS\btwdndis.sys><Broadcom Corporation.>
[WIDCOMM USB Bluetooth Driver / BTWUSB][Stopped/Manual Start]
  <System32\Drivers\btwusb.sys><Broadcom Corporation.>
[Cisco Systems VPN Adapter / CVirtA][Stopped/Manual Start]
  <system32\DRIVERS\CVirtA.sys><Cisco Systems, Inc.>
[Cisco Systems Inc. IPSec Driver / CVPNDRVA][Running/Auto Start]
  <\??\C:\WINNT\system32\Drivers\CVPNDRVA.sys><Cisco Systems, Inc.>
[Deterministic Network Enhancer Miniport / DNE][Running/Manual Start]
  <system32\DRIVERS\dne2000.sys><Deterministic Networks, Inc.>
[Intel(R) PRO/1000 PCI Express Network Connection Driver / e1express][Running/Manual Start]
  <system32\DRIVERS\e1e5132.sys><Intel Corporation>
[McAfee NDIS Intermediate Filter / Firehk][Stopped/Manual Start]
  <system32\DRIVERS\firehk.sys><McAfee, Inc.>
[FirehkMP / FirehkMP][Running/Manual Start]
  <system32\DRIVERS\firehk.sys><McAfee, Inc.>
[firelm01 / firelm01][Running/Manual Start]
  <\??\C:\WINNT\system32\drivers\firelm01.sys><McAfee, Inc.>
[McAfee HIP Component FirePM / FirePM][Running/Boot Start]
  <\SystemRoot\system32\Drivers\FirePM.sys><McAfee, Inc.>
[McAfee HIP Component FireTDI / FireTDI][Running/System Start]
  <\??\C:\WINNT\system32\Drivers\FireTDI.sys><McAfee, Inc.>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[McAfee Inc. HIPK / HIPK][Running/Manual Start]
  <system32\drivers\HIPK.sys><McAfee, Inc.>
[McAfee Inc. HIPPSK / HIPPSK][Running/Manual Start]
  <system32\drivers\HIPPSK.sys><McAfee, Inc.>
[McAfee Inc. HIPQK / HIPQK][Running/Manual Start]
  <system32\drivers\HIPQK.sys><McAfee, Inc.>
[HSFHWAZL / HSFHWAZL][Running/Manual Start]
  <system32\DRIVERS\HSFHWAZL.sys><Conexant Systems, Inc.>
[HSF_DPV / HSF_DPV][Running/Manual Start]
  <system32\DRIVERS\HSF_DPV.sys><Conexant Systems, Inc.>
[ialm / ialm][Running/Manual Start]
  <system32\DRIVERS\igxpmp32.sys><Intel Corporation>
[Intel AHCI Controller / iaStor][Running/Boot Start]
  <\SystemRoot\system32\drivers\iaStor.sys><Intel Corporation>
[IBMPMDRV / IBMPMDRV][Running/Manual Start]
  <system32\DRIVERS\ibmpmdrv.sys><Lenovo.>
[IBMTPCHK / IBMTPCHK][Running/System Start]
  <\??\C:\WINNT\system32\Drivers\IBMBLDID.sys><N/A>
[mdmxsdk / mdmxsdk][Running/Auto Start]
  <system32\DRIVERS\mdmxsdk.sys><Conexant>
[McAfee Inc. mfehidk / mfehidk][Running/System Start]
  <system32\drivers\mfehidk.sys><McAfee, Inc.>
[McAfee Inc. mfetdik / mfetdik][Running/System Start]
  <system32\drivers\mfetdik.sys><McAfee, Inc.>
[NaiAvFilter1 / NaiAvFilter1][Running/Manual Start]
  <system32\drivers\naiavf5x.sys><McAfee Inc.>
[NaiAvTdi1 / NaiAvTdi1][Running/System Start]
  <system32\drivers\mvstdi5x.sys><McAfee Inc.>
[Intel(R) Wireless WiFi Link Adapter Driver for Windows XP 32 Bit / NETw4x32][Running/Manual Start]
  <system32\DRIVERS\NETw4x32.sys><Intel Corporation>
[PnpWmkDrv / PnpWmkDrv][Stopped/System Start]
  <\??\C:\WINNT\system32\drivers\PnpWmkDrv.sys><N/A>
[IPS Helper Driver / PROCDD][Running/Auto Start]
  <system32\DRIVERS\PROCDD.SYS><Lenovo Group Limited>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[WLAN Transport / s24trans][Running/Auto Start]
  <system32\DRIVERS\s24trans.sys><Intel Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>
[Shockprf / Shockprf][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\Apsx86.sys><Lenovo.>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[PS/2 TrackPoint Driver / Tp4Track][Running/Manual Start]
  <system32\DRIVERS\tp4track.sys><Lenovo Group Limited>
[TPDIGIMN / TPDIGIMN][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\ApsHM86.sys><Lenovo.>
[TPHKDRV / TPHKDRV][Running/System Start]
  <system32\DRIVERS\TPHKDRV.sys><Lenovo Group Limited>
[TPPWRIF / TPPWRIF][Running/System Start]
  <System32\drivers\Tppwrif.sys><N/A>
[TSMAPIP / TSMAPIP][Running/System Start]
  <System32\drivers\TSMAPIP.SYS><N/A>
[IBM PS/2 TrackPoint Filter Driver / TwoTrack][Stopped/Manual Start]
  <system32\DRIVERS\TwoTrack.sys><IBM Corporation>
[winachsf / winachsf][Running/Manual Start]
  <system32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>
==================================
Browser Add-ons
[ThunderAtOnce Class]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233} <C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[AcroIEToolbarHelper Class]
  {AE7CD045-E861-484f-8273-0445EE161910} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
[]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, >
[Adobe PDF]
  {47833539-D0C5-4125-9FA8-0819E2EAAC93} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINNT\DOWNLO~1\INPUTC~1.DLL, >
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[Adobe PDF]
  {47833539-D0C5-4125-9FA8-0819E2EAAC93} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINNT\system32\wmp.dll, (Signed) Microsoft Corporation>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[AcroIEToolbarHelper Class]
  {AE7CD045-E861-484F-8273-0445EE161910} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
[]
  {C95FE080-8F5D-11D2-A20B-00AA003C157A} <, >
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINNT\system32\Macromed\Flash\FlDbg10a.ocx, (Signed) Adobe Systems, Inc.>
[Convert link target to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[Convert link target to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[Convert selected links to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html, N/A>
[Convert selected links to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html, N/A>
[Convert selection to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[Convert selection to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[Convert to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[Convert to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[E&xport to Microsoft Excel]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[Send to &Bluetooth Device...]
  <C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm, N/A>
[Send To Bluetooth]
  <C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm, N/A>
[使用迅雷下载]
  <C:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A>
==================================
Running Processes
[PID: 1800 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1852 / SYSTEM][\??\C:\WINNT\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 1880 / SYSTEM][\??\C:\WINNT\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 1928 / SYSTEM][C:\WINNT\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcSvc.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 1940 / SYSTEM][C:\WINNT\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINNT\system32\TivoliAP.dll]  [IBM Corporation, 1.26.1.0]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACGina.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACHelper.dll]  [Lenovo , 4.42]
    [C:\WINNT\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSvcStub.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcLocSettings.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACON.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcCryptHlpr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACTurinSupport.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSmBiosHelper.dll]  [Lenovo, 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcAdaptersInfo.dll]  [Lenovo , 4.42]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 260 / SYSTEM][C:\WINNT\system32\ibmpmsvc.exe]  [Lenovo, 1.44]
[PID: 288 / SYSTEM][C:\WINNT\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 396 / NETWORK SERVICE][C:\WINNT\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 436 / SYSTEM][C:\WINNT\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\System32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 464 / SYSTEM][C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe]  [Broadcom Corporation., 5.1.0.4700]
[PID: 528 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe]  [Intel Corporation , 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8]
    [C:\Program Files\Intel\Wireless\Bin\IntStngs.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL]  [N/A, ]
[PID: 688 / NETWORK SERVICE][C:\WINNT\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 752 / LOCAL SERVICE][C:\WINNT\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 1128 / SYSTEM][C:\WINNT\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
    [C:\WINNT\system32\AdobePDF.dll]  [Adobe Systems Incorporated., 7.0.0.00]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Adobe\Acrobat 7.0\Distillr\adistres.dll]  [Adobe Systems Incorporated., 7.0.0.2004121400]
    [C:\WINNT\system32\bthcrp.dll]  [Broadcom Corporation., 5.1.0.4700]
    [C:\WINNT\system32\WidcommSdk.dll]  [Broadcom Corporation., 5.1.0.4700]
    [C:\WINNT\system32\wbtapi.dll]  [Broadcom Corporation., 5.1.0.4700]
    [C:\WINNT\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll]  [Microsoft Corporation, 6.0.5824.16384 (winmain(wmbla).060911-0725)]
[PID: 1232 / SYSTEM][C:\Program Files\Lenovo\TrackPoint\TP4SERVINST.EXE]  [Lenovo Group Limited, 4.63]
[PID: 1248 / SYSTEM][C:\WINNT\system32\IPSSVC.EXE]  [Lenovo Group Limited, 3, 0, 3, 0]
    [C:\WINNT\system32\PROCHLP.DLL]  [Lenovo Group Limited, 3, 0, 5, 0]
    [C:\Program Files\Lenovo\AwayTask\AwayDB.DLL]  [Lenovo Group Limited, 3, 0, 3, 0]
[PID: 1276 / SYSTEM][C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcLocSettings.dll]  [Lenovo , 4.42]
    [C:\WINNT\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcCryptHlpr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACHelper.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACON.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACTurinSupport.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSmBiosHelper.dll]  [Lenovo, 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcAdaptersInfo.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcLocMigrator.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ThinQCon.dll]  [Lenovo , 4.42]
[PID: 1308 / SYSTEM][C:\WINNT\system32\ccmsetup\ccmsetup.exe]  [Microsoft Corporation, 2.50.4253.3000 built by: SMS]
[PID: 1348 / SYSTEM][C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe]  [Cisco Systems, Inc., 5.0.01.0600]
    [C:\WINNT\system32\vpnapi.dll]  [N/A, ]
    [C:\WINNT\system32\vsdata.dll]  [Zone Labs LLC, 5.5.062.011]
    [C:\WINNT\system32\VSINIT.dll]  [Zone Labs LLC, 5.5.062.011]
[PID: 1376 / SYSTEM][C:\Program Files\McAfee\Host Intrusion Prevention\FireSvc.exe]  [McAfee, Inc., 7.0.0.794]
    [C:\WINNT\system32\FireCore.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\FireCNL.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\FireComm.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\FireCL.dll]  [McAfee, Inc., 7.0.0.794]
    [C:\Program Files\McAfee\Host Intrusion Prevention\Resource\0409\CLibRL.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\Program Files\McAfee\Host Intrusion Prevention\Resource\0409\AppRL.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HipShield.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory20080626085618.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\mferc.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPC.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\Program Files\Network Associates\Common Framework\GenEvtInf20080626085617.dll]  [McAfee, Inc., 3.6.0.574]
[PID: 1388 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\EvtEng.exe]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\DbEngine.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8]
    [C:\Program Files\Intel\Wireless\Bin\IntStngs.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\MurocApi.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll]  [Intel Corporation, 11. 5. 0. 2]
[PID: 1432 / SYSTEM][C:\Program Files\Network Associates\Common Framework\FrameworkService.exe]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\nailog2.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Network Associates\Common Framework\naXML2_71.dll]  [N/A, ]
    [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Network Associates\Common Framework\naCmnLib2_71.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\applib.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\Logging.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\InternetManager.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\naInet.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\UserSpace.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory20080626085618.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\Management.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\cmalib.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\naPolicyManager.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\naisign2.DLL]  [N/A, ]
    [C:\WINNT\system32\epoPGPSDK.dll]  [PGP Corporation, 3.5.3]
    [C:\Program Files\Network Associates\Common Framework\ScriptSubSys.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\UpdateSubSys.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\Scheduler.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\Agent.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\naSPIPE.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\ListenServer.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\TCSubSys.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\GenEvtInf20080626085617.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 1500 / SYSTEM][C:\Program Files\Network Associates\VirusScan\Mcshield.exe]  [McAfee, Inc., 8.0.0.336]
    [C:\Program Files\Network Associates\VirusScan\Res09\McShield.DLL]  [Network Associates, Inc., 8.0.0.251]
    [C:\Program Files\Network Associates\VirusScan\FTL.Dll]  [Network Associates, Inc., 8.0.0.135]
    [C:\Program Files\Network Associates\VirusScan\naiann.dll]  [Network Associates, Inc., 8.0.0.308]
    [C:\Program Files\Network Associates\VirusScan\mytilus.dll]  [McAfee, Inc., 8.0.0.337]
    [C:\Program Files\Network Associates\Common Framework\GenEvtInf20080626085617.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Network Associates\VirusScan\NaEventU.DLL]  [Network Associates, Inc., 8.0.0.356]
    [C:\Program Files\Network Associates\VirusScan\Res09\naEvtRes.dll]  [Network Associates, Inc., 8.0.0.342]
    [C:\Program Files\Network Associates\VirusScan\VSIDSvr.dll]  [Network Associates, Inc., 8.0.0.291]
    [C:\Program Files\Common Files\Network Associates\Engine\MCSCAN32.DLL]  [McAfee, Inc., 5.3.00]
    [C:\Program Files\Network Associates\VirusScan\EntSrv.Dll]  [McAfee, Inc, 8.0.0.453]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
[PID: 1548 / SYSTEM][C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe]  [Network Associates, Inc., 8.0.0.1004]
    [C:\Program Files\Network Associates\VirusScan\SHUTIL.dll]  [McAfee, Inc., 8.0.0.1036]
    [C:\Program Files\Network Associates\VirusScan\naiwmain.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\naicondl.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\RES09\VsTskMgr.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\MIDUtil.Dll]  [McAfee, Inc., 8.0.0.155]
[PID: 1576 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
    [C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL]  [Microsoft Corporation, 7.00.9466]
[PID: 1672 / SYSTEM][C:\Program Files\lotus\notes\ntmulti.exe]  [IBM Corp, 7.0.30.7269]
[PID: 1716 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe]  [Intel Corporation, 11. 5. 0. 2]
[PID: 1820 / SYSTEM][C:\WINNT\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
[PID: 1832 / SYSTEM][C:\WINNT\System32\TPHDEXLG.exe]  [Lenovo., 1.54.0.0]
[PID: 1904 / SYSTEM][C:\WINNT\system32\TpKmpSVC.exe]  [N/A, ]
[PID: 516 / SYSTEM][C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcLocSettings.dll]  [Lenovo , 4.42]
    [C:\WINNT\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcCryptHlpr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACHelper.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACON.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACTurinSupport.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSmBiosHelper.dll]  [Lenovo, 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSvcHlpr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcAdaptersInfo.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ANCA.dll]  [IBM Corp., 8.3]
    [C:\Program Files\ThinkPad\ConnectUtilities\ANC.dll]  [IBM Corp., 8.3]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSvcStub.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACGolan.DLL]  [Lenovo , 4.42]
    [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\DbEngine.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8]
    [C:\Program Files\Intel\Wireless\Bin\IntStngs.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\MurocAPI.dll]  [Intel Corporation, 11. 5. 0. 2]
    [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll]  [Intel Corporation, 11. 5. 0. 2]
[PID: 904 / SYSTEM][C:\Program Files\Network Associates\Common Framework\naPrdMgr.exe]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\naisign2.DLL]  [N/A, ]
    [C:\WINNT\system32\epoPGPSDK.dll]  [PGP Corporation, 3.5.3]
    [C:\Program Files\Network Associates\Common Framework\naXML2_71.dll]  [N/A, ]
    [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Network Associates\Common Framework\nailog2.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\naCmnLib2_71.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\applib.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\VirusScan\VsPlugin.dll]  [McAfee, Inc., 8.0.0.1039]
    [C:\Program Files\Network Associates\Common Framework\AgentPlugin.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\NAGSHR32.DLL]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\UpdPlug.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory20080626085618.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
    [C:\WINNT\system32\FireEpo.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\FireCore.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\FireComm.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\FireCL.dll]  [McAfee, Inc., 7.0.0.794]
    [C:\WINNT\system32\FireCNL.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\Program Files\McAfee\Host Intrusion Prevention\Resource\0409\CLibRL.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\Program Files\Network Associates\Common Framework\PCRPlug.dll]  [McAfee, Inc., 3.6.0.574]
[PID: 2452 / SYSTEM][C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPSvc.exe]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPPPI.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPPSSA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPPSA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
[PID: 2608 / LOCAL SERVICE][C:\WINNT\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\System32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
[PID: 3328 / SYSTEM][C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcLocSettings.dll]  [Lenovo , 4.42]
    [C:\WINNT\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcCryptHlpr.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACHelper.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSvcStub.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACGUIHlpr.dll]  [Lenovo , 4.42]
    [C:\WINNT\system32\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcAdaptersInfo.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACON.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACTurinSupport.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSmBiosHelper.dll]  [Lenovo, 4.42]
    [C:\WINNT\system32\MFC71ENU.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\ThinkPad\ConnectUtilities\Res\SC\GUIHlprRes.dll]  [Lenovo , 4.42]
    [C:\Program Files\ThinkPad\ConnectUtilities\Res\SC\SvcHlprRes.dll]  [Lenovo , 4.42]
[PID: 4024 / CNGALEI][C:\WINNT\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\hipi.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\HIPIS0e00150.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPQA.dll]  [McAfee, Inc., HIPSCORE.14.0.0.336.x86]
    [C:\WINNT\system32\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.291.x86]
    [C:\WINNT\system32\HcApi.dll]  [McAfee, Inc., 7.0.0.688]
    [C:\WINNT\system32\KevlarSigs.dll]  [McAfee, Inc., 7.0.0.2286]
    [C:\WINNT\system32\AcSignIcon.dll]  [Autodesk, Inc., 17.1.51.0]
    [C:\WINNT\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_dec6ddd2\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.42]
    [C:\WINNT\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.163]
    [C:\WINNT\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\MFC80ENU.DLL]  [Microsoft Corporation, 8.00.50727.42]
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, Inc., 17.1.51.0]
    [C:\WINNT\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.163]
    [C:\Program Files\Network Associates\Common Framework\JrMac.dll]  [McAfee, Inc., 1.0.0.127]
    [C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll]  [Autodesk, 17.1.51.0]
    [C:\WINNT\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.42]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\PROGRA~1\WINZIP\WZSHLSTB.DLL]  [WinZip Computing, Inc., 4.1 (32-bit)]
    [C:\Program Files\Network Associates\VirusScan\shext.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\RES09\ShExtRes.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\PROGRA~1\Filzip\fzshext.dll]  [, 3.0.1.45]
    [C:\Program Files\Common Files\Autodesk Shared\Dwf Common\DWFShellExtensionRes.dll]  [Autodesk, Inc., 1.2.0.14]
    [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.dll]  [Adobe Systems Inc., 7.0.0.2004121400\0]
    [C:\WINNT\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINNT\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\MFC71ENU.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\btncopy.dll]  [Broadcom Corporation., 5.1.0.4700]
    [C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.5.29]
    [C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 8, 96]
    [C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_01.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 20]
    [C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 16]
    [C:\WINNT\system32\igfxpph.dll]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\hccutils.DLL]  [Intel Corporation, 6.14.10.4860]
[PID: 620 / CNGALEI][C:\Program Files\Lenovo\TrackPoint\tp4serv.exe]  [Lenovo Group Limited, 4.63]
    [C:\Program Files\Lenovo\TrackPoint\US\tp4uires.dll]  [Lenovo Group Limited, 4.63]
[PID: 632 / CNGALEI][C:\WINNT\system32\TpShocks.exe]  [Lenovo., 1.54.0.1]
    [C:\Program Files\ThinkPad\TpShocks\MUI\0409\TpShocks.dll]  [Lenovo., 1.54.0.1]
    [C:\WINNT\system32\Sensor.dll]  [Lenovo., 1.54.0.0]
[PID: 636 / CNGALEI][C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe]  [Lenovo Group Limited, 1.02]
    [C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.dll]  [Lenovo Group Limited, 1.00]
    [C:\Program Files\Lenovo\HOTKEY\hkvolkey.dll]  [N/A, ]
[PID: 480 / CNGALEI][C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe]  [Lenovo Group Limited, 5.00]
[PID: 828 / CNGALEI][C:\Program Files\Analog Devices\Core\smax4pnp.exe]  [Analog Devices, Inc., 6,0,32,155]
    [C:\Program Files\Analog Devices\Core\SMWDMIF.dll]  [Analog Devices, Inc., 6, 0, 5600, 005]
[PID: 880 / CNGALEI][C:\Program Files\Lenovo\Zoom\TpScrex.exe]  [Lenovo Group Limited, 2.01]
[PID: 972 / CNGALEI][C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE]  [McAfee, Inc., 8.0.0.1040]
    [C:\Program Files\Network Associates\VirusScan\SHUTIL.dll]  [McAfee, Inc., 8.0.0.1036]
    [C:\Program Files\Network Associates\VirusScan\naiwmain.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\RES09\shstat.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\RES09\Product.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\RES09\McShield.dll]  [Network Associates, Inc., 8.0.0.251]
    [C:\Program Files\Network Associates\VirusScan\RES09\Shutilrc.dll]  [Network Associates, Inc., 8.0.0.912]
    [C:\Program Files\Network Associates\VirusScan\Graphics.dll]  [Network Associates, Inc., 8.0.0.912]
[PID: 1772 / CNGALEI][C:\Program Files\Network Associates\Common Framework\UdaterUI.exe]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\nailog2.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Network Associates\Common Framework\naCmnLib2_71.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\naXML2_71.dll]  [N/A, ]
    [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Network Associates\Common Framework\applib.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\cmalib.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\0409\UpdRes.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll]  [McAfee, Inc., 3.6.0.574]
    [C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory20080626085618.dll]  [McAfee, Inc., 3.6.0.574]
[PID: 2184 / CNGALEI][C:\Program Files\Network Associates\Common Framework\McTray.exe]  [McAfee, Inc., 1.0.0.127]
    [C:\Program Files\Network Associates\Common Framework\JrMac.dll]  [McAfee, Inc., 1.0.0.127]
[PID: 2204 / CNGALEI][C:\WINNT\system32\igfxtray.exe]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\hccutils.DLL]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\igfxsrvc.dll]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\igfxres.dll]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\igfxress.dll]  [Intel Corporation, 6.14.10.4860]
[PID: 2232 / CNGALEI][C:\WINNT\system32\hkcmd.exe]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\hccutils.DLL]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\igfxsrvc.dll]  [Intel Corporation, 6.14.10.4860]
    [C:\WINNT\system32\igfxres.dll]  [Intel Corporation, 6.14.10.4860]
[PID: 2292 / CNGALEI][C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe]  [Lenovo Group Ltd., 2, 3, 2, 0]
    [C:\PROGRA~1\ThinkPad\UTILIT~1\SC\EzMApRes.dll]  [Lenovo Group Ltd., 2, 3, 2, 0]
[PID: 1052 / CNGALEI][C:\Tiger\Tools\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.7.0.1210]
[PID: 1740 / CNGALEI][C:\Tiger\Tools\sreng2\SREbb7782b2.EXE]  [Smallfrogs Studio, 2.7.0.1210]
    [C:\Tiger\Tools\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINNT\hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock Provider
N/A
==================================
Autorun.Inf
N/A
==================================
HOSTS File
127.0.0.1       localhost
==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 528, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\S24EVMON.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 516, C:\PROGRAM FILES\THINKPAD\CONNECTUTILITIES\ACSVC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3328, C:\PROGRAM FILES\THINKPAD\CONNECTUTILITIES\SVCGUIHLPR.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1052, C:\TIGER\TOOLS\SRENG2\SRENGLDR.EXE]
==================================
Scheduled Tasks
[Disabled] PMTask.job
        C:\PROGRA~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE
==================================
API HOOK
N/A
==================================
Hidden Process
N/A
==================================
[/code]

2008-11-18 23:45 西门吹雪
C:\WINNT\system32\drivers\.sys
文件发上来看看!
如果找不到,尝试用助手的自定义对象清理,注意备份样本发上来!

2008-11-19 13:00 Tiger51
今天同事已经用360帮我搞定了。

谢谢各位大侠指点!

页: [1]
查看完整版本: IE主页被改为84817怎么办?

※※※※※※

Powered by Discuz! Archiver 5.5.0  © 2001-2006 Comsenz Inc.