网页资讯视频图片知道文库贴吧地图采购
进入贴吧全吧搜索
sreng吧 关注:18贴子:293
  • 10回复贴,共1

帮忙看看temp里总有个~198.exe 总删不掉

只看楼主收藏回复

    <WinlogonNotify: cscdll><cscdll.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
    <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    <WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll> [(Verified)Kaspersky Lab]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
    <WinlogonNotify: WBSrv><D:\WindowBlinds\wbsrv.dll> [Stardock Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [Microsoft Corporation]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]

IP属地:陕西2楼2010-02-21 14:11
回复
        <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
        <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
        <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
        <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> []
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
        <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub> []
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
        <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
        <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll> [Microsoft Corporation]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
        <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe> [Microsoft Corporation]
    [HKEY_CURRENT_USER\Control Panel\Desktop]
        <SCRNSAVE.EXE><C:\WINDOWS\System32\logon.scr> [Microsoft Corporation]
    ==================================
    启动文件夹
    N/A
    ==================================
    服务
    [Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
    <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
    [Alerter / Alerter][Stopped/Manual Start]
    <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\system32\alrsvc.dll><Microsoft Corporation>
    [Application Layer Gateway Service / ALG][Running/Manual Start]
    <C:\WINDOWS\System32\alg.exe><Microsoft Corporation>
    [Application Management / AppMgmt][Stopped/Manual Start]
    <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><Microsoft Corporation>
    [Windows Audio / AudioSrv][Running/Auto Start]
    <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\audiosrv.dll><Microsoft Corporation>
    [Kaspersky Internet Security / AVP][Running/Auto Start]
    
    IP属地:陕西3楼2010-02-21 14:11
    回复
      <"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe" -r><Kaspersky Lab>
      [Background Intelligent Transfer Service / BITS][Running/Auto Start]
      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\qmgr.dll><Microsoft Corporation>
      [Computer Browser / Browser][Running/Auto Start]
      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\browser.dll><Microsoft Corporation>
      [Indexing Service / CiSvc][Stopped/Manual Start]
      <C:\WINDOWS\system32\cisvc.exe><Microsoft Corporation>
      [ClipBook / ClipSrv][Stopped/Disabled]
      <C:\WINDOWS\system32\clipsrv.exe><Microsoft Corporation>
      [COM+ System Application / COMSysApp][Stopped/Manual Start]
      <C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}><Microsoft Corporation>
      [Cryptographic Services / CryptSvc][Running/Auto Start]
      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\cryptsvc.dll><Microsoft Corporation>
      [DCOM Server Process Launcher / DcomLaunch][Running/Auto Start]
      <C:\WINDOWS\system32\svchost -k DcomLaunch-->%SystemRoot%\system32\rpcss.dll><Microsoft Corporation>
      [DHCP Client / Dhcp][Running/Auto Start]
      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\dhcpcsvc.dll><Microsoft Corporation>
      [Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
      <C:\WINDOWS\System32\dmadmin.exe /com><Microsoft Corp., Veritas Software>
      [Logical Disk Manager / dmserver][Running/Auto Start]
      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\dmserver.dll><Microsoft Corp.>
      [DNS Client / Dnscache][Running/Auto Start]
      <C:\WINDOWS\system32\svchost.exe -k NetworkService-->%SystemRoot%\System32\dnsrslvr.dll><Microsoft Corporation>
      [Wired AutoConfig / Dot3svc][Stopped/Manual Start]
      <C:\WINDOWS\System32\svchost.exe -k dot3svc-->%SystemRoot%\System32\dot3svc.dll><Microsoft Corporation>
      [Extensible Authentication Protocol Service / EapHost][Stopped/Manual Start]
      <C:\WINDOWS\System32\svchost.exe -k eapsvcs-->%SystemRoot%\System32\eapsvc.dll><Microsoft Corporation>
      [Event Log / Eventlog][Running/Auto Start]
      <C:\WINDOWS\system32\services.exe><Microsoft Corporation>
      [COM+ Event System / EventSystem][Running/Manual Start]
      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\es.dll><Microsoft Corporation>
      [Fast User Switching Compatibility / FastUserSwitchingCompatibility][Running/Manual Start]
      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\shsvcs.dll><Microsoft Corporation>
      [Help and Support / helpsvc][Stopped/Manual Start]
      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll><Microsoft Corporation>
      [HID Input Service / HidServ][Running/Auto Start]
      
      IP属地:陕西4楼2010-02-21 14:11
      回复
        <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><Microsoft Corporation>
        [Health Key and Certificate Management Service / hkmsvc][Stopped/Manual Start]
        <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\kmsvc.dll><Microsoft Corporation>
        [HTTP SSL / HTTPFilter][Stopped/Manual Start]
        <C:\WINDOWS\System32\svchost.exe -k HTTPFilter-->%SystemRoot%\System32\w3ssl.dll><Microsoft Corporation>
        [IMAPI CD-Burning COM Service / ImapiService][Stopped/Manual Start]
        <C:\WINDOWS\system32\imapi.exe><Microsoft Corporation>
        [Infrared Monitor / Irmon][Running/Auto Start]
        <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\irmon.dll><Microsoft Corporation>
        [Server / LanmanServer][Running/Auto Start]
        <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\srvsvc.dll><Microsoft Corporation>
        [Workstation / lanmanworkstation][Running/Auto Start]
        <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\wkssvc.dll><Microsoft Corporation>
        [TCP/IP NetBIOS Helper / LmHosts][Running/Auto Start]
        <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\System32\lmhsvc.dll><Microsoft Corporation>
        [Messenger / Messenger][Stopped/Disabled]
        <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\msgsvc.dll><Microsoft Corporation>
        [NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start]
        <C:\WINDOWS\system32\mnmsrvc.exe><Microsoft Corporation>
        [Distributed Transaction Coordinator / MSDTC][Stopped/Manual Start]
        <C:\WINDOWS\system32\msdtc.exe><Microsoft Corporation>
        [Windows Installer / MSIServer][Stopped/Manual Start]
        <C:\WINDOWS\system32\msiexec.exe /V><Microsoft Corporation>
        [Network Access Protection Agent / napagent][Stopped/Manual Start]
        <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\qagentrt.dll><Microsoft Corporation>
        [Network DDE / NetDDE][Stopped/Disabled]
        <C:\WINDOWS\system32\netdde.exe><Microsoft Corporation>
        [Network DDE DSDM / NetDDEdsdm][Stopped/Disabled]
        <C:\WINDOWS\system32\netdde.exe><Microsoft Corporation>
        [Net Logon / Netlogon][Stopped/Manual Start]
        <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
        [Network Connections / Netman][Running/Manual Start]
        <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\netman.dll><Microsoft Corporation>
        [Network Location Awareness (NLA) / Nla][Running/Manual Start]
        <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mswsock.dll><Microsoft Corporation>
        [NT LM Security Support Provider / NtLmSsp][Stopped/Manual Start]
        <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
        [Removable Storage / NtmsSvc][Stopped/Manual Start]
        <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\ntmssvc.dll><Microsoft Corporation>
        
        IP属地:陕西5楼2010-02-21 14:11
        回复
          [NVIDIA Display Driver Service / NVSvc][Stopped/Auto Start]
          <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
          [Plug and Play / PlugPlay][Running/Auto Start]
          <C:\WINDOWS\system32\services.exe><Microsoft Corporation>
          [IPSEC Services / PolicyAgent][Running/Auto Start]
          <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
          [Protected Storage / ProtectedStorage][Running/Auto Start]
          <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
          [Remote Access Auto Connection Manager / RasAuto][Stopped/Manual Start]
          <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\rasauto.dll><Microsoft Corporation>
          [Remote Access Connection Manager / RasMan][Running/Manual Start]
          <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\rasmans.dll><Microsoft Corporation>
          [Remote Desktop Help Session Manager / RDSessMgr][Stopped/Manual Start]
          <C:\WINDOWS\system32\sessmgr.exe><Microsoft Corporation>
          [Routing and Remote Access / RemoteAccess][Stopped/Disabled]
          <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mprdim.dll><Microsoft Corporation>
          [Remote Registry / RemoteRegistry][Stopped/Disabled]
          <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\system32\regsvc.dll><Microsoft Corporation>
          [Remote Procedure Call (RPC) Locator / RpcLocator][Stopped/Manual Start]
          <C:\WINDOWS\system32\locator.exe><Microsoft Corporation>
          [Remote Procedure Call (RPC) / RpcSs][Running/Auto Start]
          <C:\WINDOWS\system32\svchost -k rpcss-->%SystemRoot%\system32\rpcss.dll><Microsoft Corporation>
          [QoS RSVP / RSVP][Stopped/Manual Start]
          <C:\WINDOWS\system32\rsvp.exe><Microsoft Corporation>
          [Security Accounts Manager / SamSs][Running/Auto Start]
          <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
          [Smart Card / SCardSvr][Stopped/Manual Start]
          <C:\WINDOWS\System32\SCardSvr.exe><Microsoft Corporation>
          [Task Scheduler / Schedule][Running/Auto Start]
          <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\system32\schedsvc.dll><Microsoft Corporation>
          [Secondary Logon / seclogon][Running/Auto Start]
          <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\seclogon.dll><Microsoft Corporation>
          [System Event Notification / SENS][Running/Auto Start]
          <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\sens.dll><Microsoft Corporation>
          [Windows Firewall/Internet Connection Sharing (ICS) / SharedAccess][Running/Auto Start]
          <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\ipnathlp.dll><Microsoft Corporation>
          [Shell Hardware Detection / ShellHWDetection][Running/Auto Start]
          <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\shsvcs.dll><Microsoft Corporation>
          [Print Spooler / Spooler][Running/Auto Start]
          
          IP属地:陕西6楼2010-02-21 14:11
          回复
                <WinlogonNotify: cscdll><cscdll.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
                <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
                <WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll> [(Verified)Kaspersky Lab]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
                <WinlogonNotify: ScCertProp><wlnotify.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
                <WinlogonNotify: Schedule><wlnotify.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
                <WinlogonNotify: sclgntfy><sclgntfy.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
                <WinlogonNotify: SensLogn><WlNotify.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
                <WinlogonNotify: termsrv><wlnotify.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
                <WinlogonNotify: WBSrv><D:\WindowBlinds\wbsrv.dll> [Stardock Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
                <WinlogonNotify: wlballoon><wlnotify.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
                <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [Microsoft Corporation]
                <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
                <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
                <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [File is missing]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
                <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [Microsoft Corporation]
            [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
            
            IP属地:陕西9楼2010-02-21 14:13
            回复
                  <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
              [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
                  <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
              [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
                  <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
              [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
                  <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> []
              [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
                  <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub> []
              [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
                  <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
              [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
                  <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll> [Microsoft Corporation]
              [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
                  <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe> [Microsoft Corporation]
              [HKEY_CURRENT_USER\Control Panel\Desktop]
                  <SCRNSAVE.EXE><C:\WINDOWS\System32\logon.scr> [Microsoft Corporation]
              IP属地:陕西10楼2010-02-21 14:13
              回复
                ==================================
                启动文件夹
                N/A
                ==================================
                服务
                [Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
                <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
                [Alerter / Alerter][Stopped/Manual Start]
                <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\system32\alrsvc.dll><Microsoft Corporation>
                [Application Layer Gateway Service / ALG][Running/Manual Start]
                <C:\WINDOWS\System32\alg.exe><Microsoft Corporation>
                [Application Management / AppMgmt][Stopped/Manual Start]
                <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><Microsoft Corporation>
                [Windows Audio / AudioSrv][Running/Auto Start]
                <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\audiosrv.dll><Microsoft Corporation>
                [Kaspersky Internet Security / AVP][Running/Auto Start]
                <"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe" -r><Kaspersky Lab>
                [Background Intelligent Transfer Service / BITS][Running/Auto Start]
                <C:\WINDOWS\system32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\qmgr.dll><Microsoft Corporation>
                [Computer Browser / Browser][Running/Auto Start]
                <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\browser.dll><Microsoft Corporation>
                [Indexing Service / CiSvc][Stopped/Manual Start]
                <C:\WINDOWS\system32\cisvc.exe><Microsoft Corporation>
                [ClipBook / ClipSrv][Stopped/Disabled]
                <C:\WINDOWS\system32\clipsrv.exe><Microsoft Corporation>
                [COM+ System Application / COMSysApp][Stopped/Manual Start]
                <C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}><Microsoft Corporation>
                [Cryptographic Services / CryptSvc][Running/Auto Start]
                <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\cryptsvc.dll><Microsoft Corporation>
                [DCOM Server Process Launcher / DcomLaunch][Running/Auto Start]
                <C:\WINDOWS\system32\svchost -k DcomLaunch-->%SystemRoot%\system32\rpcss.dll><Microsoft Corporation>
                [DHCP Client / Dhcp][Running/Auto Start]
                <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\dhcpcsvc.dll><Microsoft Corporation>
                [Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
                <C:\WINDOWS\System32\dmadmin.exe /com><Microsoft Corp., Veritas Software>
                [Logical Disk Manager / dmserver][Running/Auto Start]
                <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\dmserver.dll><Microsoft Corp.>
                [DNS Client / Dnscache][Running/Auto Start]
                <C:\WINDOWS\system32\svchost.exe -k NetworkService-->%SystemRoot%\System32\dnsrslvr.dll><Microsoft Corporation>
                [Wired AutoConfig / Dot3svc][Stopped/Manual Start]
                <C:\WINDOWS\System32\svchost.exe -k dot3svc-->%SystemRoot%\System32\dot3svc.dll><Microsoft Corporation>
                
                IP属地:陕西11楼2010-02-21 15:06
                回复
                  [Extensible Authentication Protocol Service / EapHost][Stopped/Manual Start]
                  <C:\WINDOWS\System32\svchost.exe -k eapsvcs-->%SystemRoot%\System32\eapsvc.dll><Microsoft Corporation>
                  [Event Log / Eventlog][Running/Auto Start]
                  <C:\WINDOWS\system32\services.exe><Microsoft Corporation>
                  [COM+ Event System / EventSystem][Running/Manual Start]
                  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\es.dll><Microsoft Corporation>
                  [Fast User Switching Compatibility / FastUserSwitchingCompatibility][Running/Manual Start]
                  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\shsvcs.dll><Microsoft Corporation>
                  [Help and Support / helpsvc][Stopped/Manual Start]
                  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll><Microsoft Corporation>
                  [HID Input Service / HidServ][Running/Auto Start]
                  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><Microsoft Corporation>
                  [Health Key and Certificate Management Service / hkmsvc][Stopped/Manual Start]
                  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\kmsvc.dll><Microsoft Corporation>
                  [HTTP SSL / HTTPFilter][Stopped/Manual Start]
                  <C:\WINDOWS\System32\svchost.exe -k HTTPFilter-->%SystemRoot%\System32\w3ssl.dll><Microsoft Corporation>
                  [IMAPI CD-Burning COM Service / ImapiService][Stopped/Manual Start]
                  <C:\WINDOWS\system32\imapi.exe><Microsoft Corporation>
                  [Infrared Monitor / Irmon][Running/Auto Start]
                  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\irmon.dll><Microsoft Corporation>
                  [Server / LanmanServer][Running/Auto Start]
                  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\srvsvc.dll><Microsoft Corporation>
                  [Workstation / lanmanworkstation][Running/Auto Start]
                  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\wkssvc.dll><Microsoft Corporation>
                  [TCP/IP NetBIOS Helper / LmHosts][Running/Auto Start]
                  <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\System32\lmhsvc.dll><Microsoft Corporation>
                  [Messenger / Messenger][Stopped/Disabled]
                  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\msgsvc.dll><Microsoft Corporation>
                  [NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start]
                  <C:\WINDOWS\system32\mnmsrvc.exe><Microsoft Corporation>
                  [Distributed Transaction Coordinator / MSDTC][Stopped/Manual Start]
                  <C:\WINDOWS\system32\msdtc.exe><Microsoft Corporation>
                  [Windows Installer / MSIServer][Stopped/Manual Start]
                  <C:\WINDOWS\system32\msiexec.exe /V><Microsoft Corporation>
                  [Network Access Protection Agent / napagent][Stopped/Manual Start]
                  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\qagentrt.dll><Microsoft Corporation>
                  
                  IP属地:陕西12楼2010-02-21 15:06
                  回复
                    [Network DDE / NetDDE][Stopped/Disabled]
                    <C:\WINDOWS\system32\netdde.exe><Microsoft Corporation>
                    [Network DDE DSDM / NetDDEdsdm][Stopped/Disabled]
                    <C:\WINDOWS\system32\netdde.exe><Microsoft Corporation>
                    [Net Logon / Netlogon][Stopped/Manual Start]
                    <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
                    [Network Connections / Netman][Running/Manual Start]
                    <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\netman.dll><Microsoft Corporation>
                    [Network Location Awareness (NLA) / Nla][Running/Manual Start]
                    <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mswsock.dll><Microsoft Corporation>
                    [NT LM Security Support Provider / NtLmSsp][Stopped/Manual Start]
                    <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
                    [Removable Storage / NtmsSvc][Stopped/Manual Start]
                    <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\ntmssvc.dll><Microsoft Corporation>
                    [NVIDIA Display Driver Service / NVSvc][Stopped/Auto Start]
                    <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
                    [Plug and Play / PlugPlay][Running/Auto Start]
                    <C:\WINDOWS\system32\services.exe><Microsoft Corporation>
                    [IPSEC Services / PolicyAgent][Running/Auto Start]
                    <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
                    [Protected Storage / ProtectedStorage][Running/Auto Start]
                    <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
                    [Remote Access Auto Connection Manager / RasAuto][Stopped/Manual Start]
                    <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\rasauto.dll><Microsoft Corporation>
                    [Remote Access Connection Manager / RasMan][Running/Manual Start]
                    <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\rasmans.dll><Microsoft Corporation>
                    [Remote Desktop Help Session Manager / RDSessMgr][Stopped/Manual Start]
                    <C:\WINDOWS\system32\sessmgr.exe><Microsoft Corporation>
                    [Routing and Remote Access / RemoteAccess][Stopped/Disabled]
                    <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mprdim.dll><Microsoft Corporation>
                    [Remote Registry / RemoteRegistry][Stopped/Disabled]
                    <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\system32\regsvc.dll><Microsoft Corporation>
                    [Remote Procedure Call (RPC) Locator / RpcLocator][Stopped/Manual Start]
                    <C:\WINDOWS\system32\locator.exe><Microsoft Corporation>
                    [Remote Procedure Call (RPC) / RpcSs][Running/Auto Start]
                    <C:\WINDOWS\system32\svchost -k rpcss-->%SystemRoot%\system32\rpcss.dll><Microsoft Corporation>
                    [QoS RSVP / RSVP][Stopped/Manual Start]
                    <C:\WINDOWS\system32\rsvp.exe><Microsoft Corporation>
                    [Security Accounts Manager / SamSs][Running/Auto Start]
                    <C:\WINDOWS\system32\lsass.exe><Microsoft Corporation>
                    [Smart Card / SCardSvr][Stopped/Manual Start]
                    
                    IP属地:陕西13楼2010-02-21 15:06
                    回复
                      <C:\WINDOWS\System32\SCardSvr.exe><Microsoft Corporation>
                      [Task Scheduler / Schedule][Running/Auto Start]
                      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\system32\schedsvc.dll><Microsoft Corporation>
                      [Secondary Logon / seclogon][Running/Auto Start]
                      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\seclogon.dll><Microsoft Corporation>
                      [System Event Notification / SENS][Running/Auto Start]
                      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\sens.dll><Microsoft Corporation>
                      [Windows Firewall/Internet Connection Sharing (ICS) / SharedAccess][Running/Auto Start]
                      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\ipnathlp.dll><Microsoft Corporation>
                      [Shell Hardware Detection / ShellHWDetection][Running/Auto Start]
                      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\shsvcs.dll><Microsoft Corporation>
                      [Print Spooler / Spooler][Running/Auto Start]
                      <C:\WINDOWS\system32\spoolsv.exe><Microsoft Corporation>
                      [System Restore Service / srservice][Stopped/Auto Start]
                      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\srsvc.dll><Microsoft Corporation>
                      [SSDP Discovery Service / SSDPSRV][Running/Manual Start]
                      <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\System32\ssdpsrv.dll><Microsoft Corporation>
                      [Windows Image Acquisition (WIA) / stisvc][Stopped/Manual Start]
                      <C:\WINDOWS\system32\svchost.exe -k imgsvc-->%SystemRoot%\system32\wiaservc.dll><Microsoft Corporation>
                      [MS Software Shadow Copy Provider / SwPrv][Stopped/Manual Start]
                      <C:\WINDOWS\system32\dllhost.exe /Processid:{01D2D807-31A4-4D8B-A20D-6D8ED11FDC7F}><Microsoft Corporation>
                      [Performance Logs and Alerts / SysmonLog][Stopped/Manual Start]
                      <C:\WINDOWS\system32\smlogsvc.exe><Microsoft Corporation>
                      [Telephony / TapiSrv][Running/Manual Start]
                      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\tapisrv.dll><Microsoft Corporation>
                      [Terminal Services / TermService][Running/Manual Start]
                      <C:\WINDOWS\System32\svchost -k DComLaunch-->%SystemRoot%\System32\termsrv.dll><Microsoft Corporation>
                      [Themes / Themes][Stopped/Disabled]
                      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\shsvcs.dll><Microsoft Corporation>
                      [Telnet / TlntSvr][Stopped/Disabled]
                      <C:\WINDOWS\system32\tlntsvr.exe><Microsoft Corporation>
                      [Distributed Link Tracking Client / TrkWks][Running/Auto Start]
                      <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\trkwks.dll><Microsoft Corporation>
                      [Windows User Mode Driver Framework / UMWdf][Stopped/Manual Start]
                      <C:\WINDOWS\system32\wdfmgr.exe><Microsoft Corporation>
                      [Universal Plug and Play Device Host / upnphost][Stopped/Manual Start]
                      <C:\WINDOWS\system32\svchost.exe -k LocalService-->%SystemRoot%\System32\upnphost.dll><Microsoft Corporation>
                      
                      IP属地:陕西14楼2010-02-21 15:06
                      回复

                        扫二维码下载贴吧客户端

                        下载贴吧APP
                        看高清直播、视频!
                        • 10回复贴,共1
                        发表回复
                        发贴请遵守贴吧协议及“七条底线”贴吧投诉
                        内  容:
                          查看全部
                        发 表
                        保存至快速回贴

                        发布成功
                        去贴吧APP订阅抽奖结果通知
                        扫码进入贴吧APP
                        ···········
                        开奖后第一时间站内信通知
                        ···········
                        中奖结果全员公示