nvcpldaemon

该诊断报告由360安全卫士提供

诊断时间: 2007-09-08 01:48:27

诊断平台: Microsoft Windows XP Service Pack 2

IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180

计算机物理内存:639.48MB-当前可用内存:447.71MB

O2-未知- BHO:(ThunderAtOnce Class)-[迅雷浏览器高级特性支持模块]-{01443AEC-0FD1-40fd-9C87-E93D1494C233}- C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll

O3-未知- Toolbar:(第三方IE工具栏)-[无效的CLSID:{1E796980-9CC5-11D1-A83F-00C04FC99D61}]-{1E796980-9CC5-11D1-A83F-00C04FC99D61}-

O8-未知- Extra context menu item:&使用DuDu下载- res://C:\Program Files\DuDu\Speed\dddmext.dll/202

O8-未知- Extra context menu item:使用迅雷下载- C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm

O23-未知- Service: 1D3D19FA [A426763B]- C:\WINDOWS\system32\FB923A71.EXE-k-(not running)

O23-未知- Service: d3drmms [ms d3drm]- C:\WINDOWS\system32\d3drm.exe-(not running)

=======================================

100-安全- Process:smss.exe [进程为会话管理子系统用以初始化系统变量，ms-dos驱动名称类似lpt1以及com，调用win32壳子系统和运行在windows登陆过程。]- C:\WINDOWS\System32\smss.exe

100-安全- Process: csrss.exe [客户端服务子系统，用以控制windows图形相关子系统。]- C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base

100-安全- Process: winlogon.exe [windows nt用户登陆程序。]- C:\WINDOWS\system32\winlogon.exe

100-安全- Process: services.exe [用于管理windows服务系统进程。]- C:\WINDOWS\system32\services.exe

100-安全- Process: lsass.exe [本地安全权限服务控制windows安全机制。]- C:\WINDOWS\system32\lsass.exe

100-安全- Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。]- C:\WINDOWS\system32\svchost-k DcomLaunch

100-安全- Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。]- C:\WINDOWS\system32\svchost-k rpcss

100-安全- Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。]- C:\WINDOWS\System32\svchost.exe-k netsvcs

100-安全- Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。]- C:\WINDOWS\system32\svchost.exe-k NetworkService

100-安全- Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell，包括开始菜单、任务栏，桌面和文件管理。]- C:\WINDOWS\Explorer.EXE

100-安全- Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。]- C:\WINDOWS\system32\svchost.exe-k LocalService

100-安全- Process: nvsvc32.exe [nvidia driver helper service在nvida显卡驱动中被安装。]- C:\WINDOWS\system32\nvsvc32.exe

100-安全- Process: 360tray.exe [360安全卫士实时监控程序。]- C:\Program Files\360safe\safemon\360Tray.exe

100-安全- Process: ctfmon.exe [office xp输入法图标。]- C:\WINDOWS\system32\ctfmon.exe

100-安全- Process: DuDuAcc.exe [dudu下载加速器的相关程序。]- C:\Program Files\DuDu\Speed\DuDuAcc.exe

100-安全- Process: dudupros.exe [Dudu下载加速器相关进程。]- C:\Program Files\DuDu\Speed\dudupros.exe

100-安全- Process: 360Safe.exe [360安全卫士相关程序。]- C:\Program Files\360safe\360safe.exe

100-安全- Process: IEXPLORE.EXE [microsoft internet explorer浏览器用于浏览网页。]- C:\Program Files\Internet Explorer\iexplore.exe

R1-安全- HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm

R1-安全- HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm

O2-安全- BHO:(dddmont Class)-[Dudu下载加速器相关文件。]-{00018593-C6BD-46F7-9349-DBA1AA674C90}- C:\Program Files\DuDu\Speed\dddiemon.dll

O2-安全- BHO:(Thunder Browser Helper)-[迅雷附带下载监视器相关文件。]-{889D2FEB-5411-4565-8998-1DD2C5261283}- C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll

O4-安全- HKLM\..\Run:[NvCplDaemon][是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize

O4-安全- HKLM\..\Run:[nwiz][是NVidia的Nview特性相关程序。该程序用于用户对其特性进行配置，将桌面扩展到多台显示器上。] nwiz.exe/install

O4-安全- HKLM\..\Run:[360Safetray][360safe实时保护功能模块。] C:\Program Files\360safe\safemon\360Tray.exe/start

O4-安全- HKCU\..\Run:[ctfmon.exe][office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe

O4-安全- Startup folder:[DuDu下载加速器.lnk][dudu加速器相关程序。] C:\Documents and Settings\All Users\「开始」菜单\程序\启动\DuDu下载加速器.lnk

O9-安全- Extra button: Windows Messenger(HKLM)- C:\Program Files\Messenger\msmsgs.exe

O23-安全- Service: NVSvc [是NVIDIA显示卡相关程序。]- C:\WINDOWS\system32\nvsvc32.exe-(running)

=======================================

O31-未知- SEApproved:{42071714-76d4-11d1-8b24-00a0c9068ff3}- deskpan.dll---- 0-

O31-未知- SEApproved:无效的CLSID：Shell extensions for file compression----- 0-

O31-未知- SEApproved:无效的CLSID：加密上下文菜单----- 0-

O31-未知- SEApproved:{0DF44EAA-FF21-4412-828E-260A8728E7F1}----- 0-

O31-未知- SEApproved:{00E7B358-F65B-4dcf-83DF-CD026B94BFD4}----- 0-

O31-未知- SEApproved:{7A9D77BD-5403-11d2-8785-2E0420524153}----- 0-

O31-未知- SEApproved:{B41DB860-8EE4-11D2-9906-E49FADC173CA}- C:\Program Files\WinRAR\rarext.dll---- 126464- af42820acf961ad57e9b5eebefb34894

O31-未知- Directory Menu:{B41DB860-8EE4-11D2-9906-E49FADC173CA}- C:\Program Files\WinRAR\rarext.dll---- 126464- af42820acf961ad57e9b5eebefb34894

O31-未知- LSA: Security Packages- sv1_0.dll---- 0-

O31-未知- LSA: Security Packages- channel.dll---- 0-

=======================================

O40- Explorer.EXE- ppstream.com- c:\documents and settings\zyl\application data\ppstream\bin\1.0.0.2\vodrc.dll- vodrc- 712283e809cc29e0deda932c17b10ea3

=======================================

O41- npkcrypt- nProtect KeyCrypt Driver- C:\Program Files\Tencent\QQ\npkcrypt.sys-(running)- nProtect KeyCrypt Driver- INCA Internet Co., Ltd.- 8bcb281a2540e7aff0cd00f9878fe21f

=======================================

360Safe.exe=3.6.1.2001

AntiAdwa.dll=3.6.1.1001

AntiEng.dll=3.6.1.1001

AntiActi.dll=2.0.0.3000

CleanHis.dll=3.0.2.1000

live.dll=1.0.1.1020

=======================================

操作历史报告：

----------清理恶评及系统插件历史----------

2007-09-08 00:43

清理恶评软件-梦幻西游盗号木马-

2007-09-08 00:40

清理恶评插件-未知自动运行程序(Autorun)- C:\autorun.inf

清理恶评插件- mppds木马- C:\WINDOWS\system32\mppds.dll

清理恶评插件- upxdnd木马- C:\WINDOWS\system32\upxdnd.dll

清理恶评插件-梦幻西游盗号木马- C:\WINDOWS\system32\LYMANGR.DLL

清理恶评插件-天龙八部盗号木马- C:\WINDOWS\system32\AVPSrv.dll

清理恶评插件- Kvsc3- C:\WINDOWS\system32\Kvsc3.dll

清理恶评插件-问道游戏盗号木马- C:\WINDOWS\system32\MsIMMs32.dll

清理恶评插件- Trojan-Download/Win32.Arp.DbgHlp32- C:\WINDOWS\NVDISP~1.EXE

----------全面诊断修复历史----------

2007-09-07 09:26

O8-未知-添加到QQ自定义面板- C:\Program Files\Tencent\QQ\AddPanel.htm

O8-未知-添加到QQ表情- C:\Program Files\Tencent\QQ\AddEmotion.htm

O8-未知-用QQ彩信发送该图片- C:\Program Files\Tencent\QQ\SendMMS.htm

2007-09-07 10:10

100-未知- d3drm.exe- C:\WINDOWS\system32\d3drm.exe

O8-未知-&使用DuDu下载全部链接- res://C:\Program Files\DuDu\Speed\dddmext.dll/203

O8-未知-&使用DuDu下载选择链接- res://C:\Program Files\DuDu\Speed\dddmext.dll/204

O8-未知-&使用DuDu捕获页面视频- res://C:\Program Files\DuDu\Speed\dddmext.dll/205

O8-未知-使用迅雷下载全部链接- C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm

O9-未知-启动迅雷5- C:\Program Files\Thunder Network\Thunder\Thunder.exe

O9-未知-腾讯QQ- C:\Program Files\Tencent\QQ\QQ.EXE

O23-未知- d3drmms- C:\WINDOWS\system32\d3drm.exe

2007-09-07 10:14

O23-未知- d3drmms- C:\WINDOWS\system32\d3drm.exe

2007-09-08 00:47

O8-未知-上传到QQ网络硬盘- C:\Program Files\Tencent\QQ\AddToNetDisk.htm

O8-未知-添加到QQ自定义面板- C:\Program Files\Tencent\QQ\AddPanel.htm

O8-未知-添加到QQ表情- C:\Program Files\Tencent\QQ\AddEmotion.htm

O8-未知-用QQ彩信发送该图片- C:\Program Files\Tencent\QQ\SendMMS.htm

O23-未知- 1D3D19FA- C:\WINDOWS\system32\FB923A71.EXE-k

O23-未知- d3drmms- C:\WINDOWS\system32\d3drm.exe

=======================================

360安全卫士，彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基7.0

最新免费下载：

关于nvcpldaemon的内容到此结束，希望对大家有所帮助。