|
|
- " Q$ d; v! Q! ~* A# L0 o& I& B% T
- 2008-05-22,20:37:43' R$ Q. ^' g7 i, ?
- System Repair Engineer 2.5.16.900
# n5 T, J' J8 ~7 [+ w - Smallfrogs (http://www.KZTechs.com)
% T9 i, F p( a6 t2 H M - Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能
! q) p/ P% a3 w; }" \ - 以下内容被选中:. E8 }8 m+ ?7 S6 r( F
- 所有的启动项目(包括注册表、启动文件夹、服务等)$ G9 J% y' n+ D* o2 }/ ]+ |# O
- 浏览器加载项% v* q8 [% q/ J4 q; X7 P
- 正在运行的进程(包括进程模块信息)
I" e1 u5 a# L' h& J1 y5 W - 文件关联$ s: O3 R- Y+ U" M$ l9 Q; V
- Winsock 提供者
/ j6 [1 i1 ]' p( k0 [ - Autorun.inf, Z. q) O1 l6 n2 F( X
- HOSTS 文件
2 S4 C a' j" F* [5 Y; Q" r - 进程特权扫描5 R" m+ x8 ]7 l9 z
- & H6 E/ i: [" {& I9 \
- 启动项目) O6 n; P6 { y j; d* k* ^
- 注册表, T# W$ s B+ w5 s; h
- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
! Q- L( R2 X O, w( W - <ctfmon.exe><C:\WINDOWS\system32\CTFMON.EXE> [(Verified)Microsoft Windows Publisher]& _: t/ K4 n+ C. z) o' r0 e) {
- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
# ~3 p9 f; p- ~/ ?0 e - <360Safebox><"C:\Program Files\360Safebox\safeboxTray.exe" /r> [(Verified)Qizhi Software (beijing) Co. Ltd]
# ?7 C' g& y7 Y- B2 g - <360Safetray><C:\Program Files\360safe\safemon\360tray.exe /start> [(Verified)Qizhi Software (beijing) Co. Ltd]
+ _5 o& s3 Y j3 m" @5 N - <360Antiarp><C:\Program Files\360safe\AntiArp\AntiArp.exe /start> [(Verified)Qizhi Software (beijing) Co. Ltd]$ ^: J0 @9 L; a( Q5 |
- <KavStart><"C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KAVStart.exe" -startup> [(Verified)KINGSOFT CORPORATION]1 l; ^7 B0 Z* q7 ]2 C6 h
- <IMJPMIG8.1><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32> [N/A]
! N, v8 `; G/ a" c2 \ - <PHIME2002A><; > [N/A]
; q) z3 d$ D; h: a8 c0 p! ? - <PHIME2002ASync><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32> [N/A]
0 Q: i4 v2 t8 T$ ^0 H0 Q - [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]8 I9 L) ^" Y6 v5 `- ]# a. q
- <shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
& a, [1 q% l* W$ K - <Userinit><C:\WINDOWS\system32\UserInit.exe,> [(Verified)Microsoft Windows Publisher]
" N _: i: u$ o4 I( _ - <UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]. v% A d6 [2 Q& d" N. w; |; d# W
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
- L$ \6 H) g y - <{AC2DC2EF-5165-40A3-8CDF-41DCA1B0901A}><C:\WINDOWS\system32\shlhook.dll> [Beijing Rising Technology Co., Ltd.]4 b2 V+ S% m" S' I3 z7 A8 ^
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
5 F1 O! |; \: ?5 ?' N8 d/ d9 q' H9 @ - <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [N/A]
0 Q5 p* T5 B+ @ - [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]4 b# n; H7 G& @* g3 f, e4 [
- <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [N/A]
! P0 S3 o! m+ s/ f! g3 X - [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]/ F$ F) L% G" L9 W1 R$ E
- <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [N/A]% C7 h! v4 c- T$ i7 p, n/ H% Z
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]: ?/ O+ V! k" `6 A( n2 D( B
- <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [N/A]' P% M5 D" `* s# j7 Z+ A% o
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
' r* i" p2 K+ D4 e p - <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Remove.PerUser.NT> [(Verified)Microsoft Windows Publisher]
' h! L$ G2 z2 c1 g" Z0 @* @. Y - [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
& y( L1 }3 V% L7 D2 x - <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Publisher]
0 Z. R8 }2 o, u& q% c - [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]/ C0 f; A9 |) x" O
- <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub> [(Verified)Microsoft Windows Publisher]9 E1 O: g; c @& u G7 t9 h
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
, G! I C: B6 U8 {$ A2 | - <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [N/A]
0 l2 }4 s6 c8 B+ ^ I( T; s7 z - ==================================$ ^- z9 y5 o4 |0 u& @/ e1 N/ g
- 启动文件夹
' U8 W) S. ^6 V$ `# L! s5 s - N/A- a" C0 y2 Q6 c, a! a
- ==================================- b s4 h L: P3 i2 s
- 服务
, _' A" @' E% y' n% R: e9 \ - [3ware Controller Service / 3wareSrv][Stopped/Auto Start]6 X/ k/ c1 Z. _
- <C:\WINDOWS\System32\3wareSrv.exe><N/A>/ E0 U% i8 b- s+ i5 w
- [Google Updater Service / gusvc][Stopped/Manual Start]& S& M" Y" R3 ] S: ?8 t
- <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
! ^% ~6 b$ Y. n; { - [Help and Support / helpsvc][Stopped/Disabled]8 O6 g) q* j# M
- <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll><N/A>
, G; T6 X6 E) _! o - [Human Interface Device Access / HidServ][Stopped/Boot Start]
& g( B6 H# i) R8 ?3 \4 X3 c - <\SystemRoot\C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
# M6 N5 G$ M1 G, R" v0 v - [Kingsoft Internet Security Common Service / KISSvc][Stopped/Auto Start]" z2 ~# L3 Q/ f, v
- <C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KISSvc.EXE><Kingsoft Corporation>+ @- [1 d2 B8 g+ N
- [Kingsoft Personal Firewall Service / KPfwSvc][Running/Auto Start]
7 z9 A- }2 Y* U8 C4 E& w8 H - <"C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KPfwSvc.EXE"><Kingsoft Corporation>* C, z" D% @5 Y" H% h1 b d7 a3 v- E
- [Kingsoft Antivirus KWatch Service / KWatchSvc][Running/Auto Start]
7 l+ \: |* z6 M* v1 u - <"C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KWatch.EXE"><Kingsoft Corporation>! _# H$ ^- U5 [6 d
- [NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start], r- f; l! h# c$ L9 r0 N" `/ b5 ?3 [
- <><N/A>- x5 \. C* }. q0 v) j2 p. ]: Z$ f
- [Qvod Terminal / Qvod Terminal][Running/Auto Start]/ M% `" Q- ~& T1 S4 k- f
- <C:\Program Files\QvodPlayer\QvodTerminal.exe><Shenzhen QVOD Technology Co.,Ltd>9 a5 N. y8 M! G$ O; T1 O
- ==================================( C. _0 V8 R% K
- 驱动程序
4 f$ L4 f* d) q' _) l( j- y - [22j / 22jn][Stopped/Boot Start]
" p6 T) _- U7 h9 T* u - <\SystemRoot\System32\DRIVERS\22jn.sys><N/A>: L3 C9 X) \/ ~5 g
- [360AntiArp / 360AntiArp][Running/System Start]
2 }( L+ X3 t& b5 W4 S& c) i: H% n% o - <\??\C:\WINDOWS\system32\drivers\360AntiArp.sys><360安全中心>
0 V. D0 A* P) O3 U* i- @ ? - [43ec / 43ecu][Stopped/Boot Start]# N9 }' c, C# w" @: L: L
- <\SystemRoot\System32\DRIVERS\43ecu.sys><N/A>* k, Q& I) U4 {/ T2 v
- [Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Running/Manual Start]; E1 h" K. h$ p( t' u
- <system32\drivers\ac97intc.sys><Intel Corporation>
% B' c/ I2 b+ ^3 f1 c0 b" a - [Promise driver accelerator / bb-run][Running/Boot Start]1 p) t' h; ~1 W) K3 z1 ?. `' f
- <\SystemRoot\system32\DRIVERS\bb-run.sys><Promise Technology, Inc.>
/ Q; y; P& O1 j6 F; K - [Promise Removable Disk Control Driver / dontgo][Running/Boot Start]1 F4 q" @, R4 l4 B; [
- <\SystemRoot\system32\DRIVERS\DontGo.sys><Promise Technology, Inc.>8 c! r% U/ f M! P. }
- [KAVBase / KAVBase][Running/Auto Start]
' H8 D H; l$ F0 U$ ?5 _ - <\??\C:\WINDOWS\system32\Drivers\KAVBase.sys><Kingsoft Corporation>& ?7 e' d3 i! P; k
- [KAVBootC / KAVBootC][Running/Boot Start]. `' H- x; s& O9 {. D
- <\SystemRoot\system32\Drivers\KAVBootC.sys><Kingsoft Corporation>
1 ]# C$ j r6 G: { - [KAVSafe / KAVSafe][Running/Auto Start]9 v1 m0 _5 _( J1 o3 S
- <\??\C:\WINDOWS\system32\Drivers\KAVSafe.sys><Kingsoft Corporation>
- Q+ H: m' b6 R3 u# d - [KNetWch / KNetWch][Running/System Start]
+ y* J& s1 i8 v8 Q: g - <\??\C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KNetWch.SYS><Kingsoft Corporation>$ T, m4 E5 D% a7 m/ h+ b7 t
- [KWatch3 / KWatch3][Running/Auto Start]8 ] A' _+ Y8 z' O9 i8 G1 `
- <\??\C:\WINDOWS\system32\drivers\KWatch3.SYS><Kingsoft Corporation>
! H- X9 R3 N; c. ^ H. w% ~$ r. u - [ntptdb / ntptdb][Stopped/Auto Start]( j/ C( v$ }, Y/ J" I l$ C
- <\??\C:\Documents and Settings\All Users\Application Data\Microsoft\Office\SYSTEM\ntptdb.sys><N/A>
3 N' g5 K8 q" F( L; }3 t7 d0 V - [nv / nv][Running/Manual Start]$ ]4 ^9 w) E+ e6 x, A9 I% _
- <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
8 E/ d; @' @ D. Y) X - [NVIDIA nForce RAID Driver / nvrd32][Running/Boot Start]
6 Q4 ~# @* N* [% T7 A% a* \ c7 a9 B - <\SystemRoot\system32\DRIVERS\nvrd32.sys><NVIDIA Corporation>; B, ^- \/ }% N, J
- [DDK PACKET Protocol / Packet][Running/Manual Start]
8 |5 s) y5 v' x* p& n, v' k - <system32\DRIVERS\ProtoDrv.sys><360安全中心>- U2 _, [8 H+ L/ B/ z% Y- U$ A
- [pnduojtwbt / pnduojtwbt][Stopped/Boot Start] E) ~5 ]2 `9 h1 ~4 g! _
- <\SystemRoot\system32\drivers\pnduojtwbt.sys><N/A>3 L7 a. k& |0 D2 y
- [Direct Parallel Link Driver / Ptilink][Running/Manual Start]9 R# ]" k+ h9 J+ Y2 T
- <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>7 [/ R1 _5 Y% G( |: d: k
- [RsAntiSpyware / RsAntiSpyware][Stopped/Boot Start]
2 n& t- U7 f$ @, A7 ^3 V, j p - <\SystemRoot\system32\drivers\RsBoot.sys><N/A>
; `5 f9 X( t, f2 F - [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
. y! d" a z) N) Z - <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
# H7 h3 C+ g! t+ E - [SafeBoxKrnl / SafeBoxKrnl][Running/System Start]! U" |0 }9 D4 a: C, P1 j3 r, W
- <\??\C:\Program Files\360Safebox\SafeBoxKrnl.sys><360安全中心>! J$ \. N# f. y9 T9 N
- [Secdrv / Secdrv][Stopped/Manual Start]
* k$ w2 d: \7 E. [0 {0 Y - <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
$ h: {( M7 x! ^) y# |/ {/ [ - [SATALink External Device Filter / SiRemFil][Running/Boot Start]
9 E: C- X1 g: V4 l6 |( d - <\SystemRoot\system32\DRIVERS\SiRemFil.sys><Silicon Image, Inc.>7 i; U3 J/ E# e# D% d, s; R2 W- m
- [System Restore Filter Driver / sr][Stopped/Disabled]1 X( B: B. O9 Q+ W1 _
- <system32\DRIVERS\sr.sys><N/A>$ q3 v+ T$ {5 `9 Q6 w5 {
- [TesSafe / TesSafe][Stopped/Manual Start]4 I! a7 U$ Z u
- <\??\C:\WINDOWS\system32\TesSafe.sys><TENCENT>9 ]- k( Z% B! G& ^2 M
- [System Services / unzxzsrs][Stopped/Boot Start]4 `. ^- l. J" ^& t( G, g8 H
- <\SystemRoot\system32\drivers\unzxzsrs.sys><N/A>
, S9 Z& P0 F3 q$ }& E+ d* @! b - [ViBus / ViBus][Stopped/Boot Start]$ m7 r2 `1 w n! h
- <\SystemRoot\system32\DRIVERS\ViBus.sys><N/A>
/ H' S+ ` ]/ u. | - [World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]5 F" y, Q7 l6 a5 j
- <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
0 I! \; `* g L) t - [VIA SATA IDE Hot-plug Driver / xfilt][Running/Boot Start]
- j+ v' a3 B8 W - <\SystemRoot\system32\DRIVERS\xfilt.sys><VIA Technologies,Inc> t1 P' m4 s& n6 v& N
- [ATI Extend / zhibmaso][Stopped/Boot Start]
4 H+ J4 p% |7 N - <\SystemRoot\system32\drivers\zhibmaso.sys><N/A>
3 H( P8 N2 c$ h( W2 Z7 x - [Vimicro USB PC Camera (ZC0301PL) / ZSMC301b][Running/Manual Start]4 L0 c, [+ E' h6 j, t( ~1 f2 m+ I
- <System32\Drivers\usbVM31b.sys><Vimicro Corporation>. P2 e2 p2 C& K
- ==================================( D2 _: d! c( Z4 a) z
- 浏览器加载项
* y+ X" y0 |% X9 y9 [! y: H$ I+ ` - [Google Toolbar Helper]
" V/ K, y1 U7 r - {AA58ED58-01DD-4d91-8333-CF10577473F7} <c:\program files\google\googletoolbar2.dll, Google Inc.>
: _( L; d) c0 _, |+ Z# } - [Google Toolbar Notifier BHO]* V: @' Q/ ?- j2 I2 I) u4 ^/ x
- {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>; T( p" i H6 U0 J0 ~' q
- [SafeMon Class]
, @5 d& {% |, r& e: b) W7 g+ ~) p - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360safe\safemon\safemon.dll, 360.CN>; N1 \& H+ Y" r
- [kingsoft browser shield]
( r( p4 H6 S$ u) }* D - {D963BE1A-6B35-47DB-B002-49FAE71D85CC} <C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KASBrowserShield.DLL, Kingsoft Corporation>7 k' E# F2 S* b* r. \* c& l( ?
- [IEBuddyExtControl Class]
( H, D7 d2 v7 I4 z% W6 x - {3AECD3C1-7085-4731-96DC-47B6CF7EF749} <C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\IEBuddyExt.DLL, Kingsoft Corporation>
& }0 ^' @" B9 p - [Zcom 杂志]' ]! l- M( i9 Z8 R3 }% O
- {4045D313-1D5E-4fe4-93A0-A34630B6A00B} <C:\Zcom\E-Space.exe, N/A>
) R* T( {; Y& [2 N0 g: P Z. c# m - [&Google]9 e, i4 J) ]& I+ @ C
- {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, Google Inc.>( t* c0 N! Z# D0 ~
- [KooPlayer Control]0 \' r; f! v9 s: \, f0 [
- {C728DAB8-FDF5-4CD7-89DD-879D25794C77} <C:\WINDOWS\system32\CCTVKO~1.OCX, Koos>
1 T6 m* D! `0 z/ y0 c3 c% u6 m - [Shockwave Flash Object]
+ g8 s( T# |- G& l; e - {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, Adobe Systems, Inc.>' ?7 W( l5 m# q9 H
- [KUpdateObj2 Class]+ `: t" N2 w$ V& c# j7 J1 Z+ i
- {D82303B7-A754-4DCB-8AFC-8CF99435AACE} <C:\WINDOWS\system32\KingSoft\KOS\UpdateOcx2.dll, Kingsoft Corporation># q% \6 a6 S/ e. F+ F- T
- [Google Script Object]
. Z. x3 \/ w0 E, @& l) O/ v - {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar2.dll, Google Inc.>
" u+ I' w% K! T5 i. h6 ]: w; U7 G - [EWA Control]
5 @ J3 [. K6 A/ {# e - {18226BF8-DC0B-4D81-80E9-A41AE37BB73A} <C:\PROGRA~1\PPLive\SYNACA~2.OCX, Synacast>
; o U- P7 Z; J: ` - [Windows Media Player]- R* |: i) U7 }! G
- {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\msdxm.ocx, Microsoft Corporation> e t% w5 h# v
- [&Google]
, b' L1 o; u& f5 p; k5 S4 C# i - {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, Google Inc.>7 Q( ^7 t% |/ M
- [HTML Document]
( ^ c' ^2 I! J% ]1 Z, h" H - {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>2 r6 ]+ h" ]6 y
- [DHTML Edit Control Safe for Scripting for IE5]
. I* S l$ @% x' K8 W - {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>- }. f* e" u: i0 Z" @
- [RealPlayer RAM Download Handler]3 l& B2 L- L- I: v/ c0 j+ f& V- o
- {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>. M& g9 Y( V. R2 ~! x/ `: Y
- [IEBuddyExtControl Class]( u- [2 q1 @/ J+ [* m
- {3AECD3C1-7085-4731-96DC-47B6CF7EF749} <C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\IEBuddyExt.DLL, Kingsoft Corporation>8 I2 G6 T3 E) f( F1 H" }
- [XML Document]9 f1 ^- ?2 l$ }( s" _" U6 Y
- {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
8 y. R/ f% V8 O& A0 h% h3 p; n) g - [HHCtrl Object]5 t5 y* i; g' A
- {52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>1 p( W0 n) Q' S1 N
- [Windows Media Player]
2 ~6 ]! l( X% ]" ^; @, O8 d - {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
4 D* m; c2 V/ W# y3 [; W& Z8 j' ^ - [Active Desktop Mover]
; U3 w. X( s% M) U! ~+ k4 e - {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>- x( a _$ s L% o
- [360SafeLive]. i0 Z: b" R% x6 E1 X4 J- g) x9 t
- {87515F61-A66C-4319-A0E0-D416CB8059E3} <C:\Program Files\360safe\live.dll, 360.cn>+ g- m1 B4 H6 L Z+ _
- [Microsoft Web 浏览器]! s7 T" a# L9 d% C
- {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
. \5 g; [* D! ~, [/ d* b$ y' @2 C - [Browser Enhanced Objects]9 s2 r2 x- t6 v
- {986488AF-13D5-9DDF-4FEF-9FB88698CFC1} <C:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\USERDATA\webbrowser_2011.dll, N/A>
* W; E& D& ]5 q/ G- P - [Google Toolbar Helper]
. Q5 v5 Y G9 ]4 p- f - {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar2.dll, Google Inc.>
9 ^+ I; f0 M0 H& ]6 [ - [Microsoft Scriptlet Component]! ~& B+ Q% ?# Z! ^ U
- {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
$ }3 a8 M1 D1 u - [Google Toolbar Notifier BHO]
9 F, o* s3 ^7 ?6 m5 P/ o: K$ s4 T9 d* I# ` L - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>6 u2 |+ y; {! ~) I
- [SearchAssistantOC] p3 t3 l, T) e2 I/ f
- {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>6 r }& w1 M% j) E
- [SafeMon Class]1 I) R, Q7 w, T: {; w
- {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360safe\safemon\safemon.dll, 360.CN>
% i6 ^8 b2 J( {* k; R# X; T - [RDS.DataSpace]- g0 _! Z* X! k/ ^
- {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>1 |+ G0 h" n7 F7 x+ \
- [KooPlayer Control]
: n! U- r: I; e# |) D2 } - {C728DAB8-FDF5-4CD7-89DD-879D25794C77} <C:\WINDOWS\system32\CCTVKO~1.OCX, Koos>
+ n' n% h4 D+ n0 u% ~4 K0 y# x - [AUDIO__MID Moniker Class]
& Y% n2 l4 S2 Z5 i7 |) x - {CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>1 O* H$ h( |' L
- [AUDIO__MP3 Moniker Class]3 J5 ] T! P$ K4 x9 c8 U
- {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
9 [% H5 b2 p9 H3 \0 y$ W/ \' X - [AUDIO__X_MS_WMA Moniker Class]
# t2 p# f$ z: w. c8 i' P2 I8 j - {CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
. K7 a u6 f6 T0 H( d - [VIDEO__X_MS_WMV Moniker Class]" A9 J: }0 F8 Z; N O
- {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
8 L; V, @$ ]; ~* Y7 ]( Y0 G3 X" b, _1 k - [RealPlayer G2 Control]1 F: g! Y- F, D0 I+ z4 J; J
- {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
5 e! t) x5 _2 z* ?8 b - [Shockwave Flash Object]
/ L% }0 Z( u8 W6 { - {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, Adobe Systems, Inc.>3 }" u4 X- ?2 G! H1 M
- [KUpdateObj2 Class]
4 b. n8 {+ _( o$ X. f9 w: O, t$ S - {D82303B7-A754-4DCB-8AFC-8CF99435AACE} <C:\WINDOWS\system32\KingSoft\KOS\UpdateOcx2.dll, Kingsoft Corporation>) R, B6 u/ [; b' ~
- [kingsoft browser shield]& q" t: j# y: I a+ Y! U) p: J
- {D963BE1A-6B35-47DB-B002-49FAE71D85CC} <C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KASBrowserShield.DLL, Kingsoft Corporation>0 @9 H& i$ j' \) j% m$ i* Q
- [PasswordEditCtrl Class]0 z& m6 m/ W" h
- {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\system32\qqedit\qqedit.dll, 腾讯科技(深圳)有限公司>
S6 M: d6 Q0 R& Y6 ~6 u0 Z - [QvodCtrl Class]
v1 a; \5 ^$ W/ E5 v! B - {F3D0D36F-23F8-4682-A195-74C92B03D4AF} <C:\Program Files\QvodPlayer\QvodInsert.dll, Shenzhen QVOD Technology Co.,Ltd>
+ B4 j" x- B2 M3 b: E1 ]' m - [&使用超级旋风下载]8 C" V- ^* }% ?) I2 r1 v% X4 G
- <C:\Program Files\Tencent\QQDownload\geturl.htm, N/A>
6 b1 C; t: F" j- T( z2 x - [&使用超级旋风下载全部链接]
. j0 l) ^4 R" j& i - <C:\Program Files\Tencent\QQDownload\getAllurl.htm, N/A>
5 c: ^# @. `! W, [- ~7 V - [使用迅雷下载]$ l- t8 s- ?6 m" F2 X
- <, N/A>' u( A. ?+ U; t- t- M* t$ i
- [使用迅雷下载全部链接]
, H, [, z7 ]) N8 [0 ^ - <, N/A>
+ c2 n. S4 v( j3 Y6 o3 ?2 ? - [导出到 Microsoft Office Excel(&X)]
3 Y/ k, e G7 P7 V' C% T( s" T - <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
+ A* e# D# x S3 X6 X7 D9 p+ c - [添加到QQ表情]
" K0 z B8 u5 K+ I# [ - <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>: r) L: f& P+ V
- ==================================; ^& k4 Z$ V4 @- A
- 正在运行的进程
' X4 C8 V, Y' p6 B: M) n) ^" o" s - [PID: 444 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
8 n) A! l$ p' y1 r% Z - [PID: 496 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]8 x5 i: C3 [8 y$ p: g! t) ~
- [PID: 520 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]2 n5 c) B( B. T- _
- [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
1 {1 e9 T0 Q3 N - [PID: 564 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]- h% t) ^, h$ `4 o @
- [PID: 576 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]$ j! f( f, T) W6 D/ D( C0 B& ~
- [PID: 720 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
; A% {7 |4 F) A8 F) U' f6 a - [PID: 780 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]0 r. C: b: K& ?) ^ `" b
- [PID: 856 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
* ]- V! e# @- J) a3 h - [PID: 944 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
+ I- ~2 E5 ~0 W( v - [PID: 1012 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
! n P% S7 _2 a9 c" f4 ^' r; o - [PID: 1236 / Administrator][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_qfe.070613-1311)]1 f: ] X. Y+ A+ N) g. ]% C
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]* L: _0 ~2 v2 }3 E$ o* k, q
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]
2 Z- }, G" \/ J3 K+ @+ q; c* q. D - [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
, y# J5 J$ v/ ?4 \ - [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001]% g; T4 |6 D: z, y# j
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KAVEXT.DLL] [Kingsoft Corporation, 2008,05,07,373]
1 J& p& q3 J5 S0 M8 w' ?8 K& W - [C:\Program Files\Tencent\QQ\qdshm.dll] [, 1, 0, 101, 20]% m% Y! B; _$ J( ^3 `
- [C:\Program Files\Tencent\QQ\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]6 u( u, s/ I9 O- v1 U( _- i% Q% S
- [C:\Program Files\WinRAR\rarext.dll] [N/A, ]
% ~4 t( h. U& G' l6 |7 D - [C:\WINDOWS\system32\shlhook.dll] [Beijing Rising Technology Co., Ltd., 4.0.0.9]
! {! t$ ]' l8 ?& ~ - [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]
+ Q! v0 F6 h8 d0 D3 V - [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510]
9 K. u' ]* V* y9 h s: N# o; @ - [PID: 1332 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]+ E3 O3 H" H6 c
- [C:\WINDOWS\system32\mdimon.dll] [Microsoft Corporation, 11.3.8166.2]
3 \# b0 H; k9 W - [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll] [Microsoft Corporation, 11.3.8166.2]
$ x/ d) D' Z8 E q - [PID: 1540 / Administrator][C:\Program Files\360safe\AntiArp\AntiArp.exe] [360安全中心, 2, 0, 0, 1008]( R/ U0 X e8 r; @1 h, Z
- [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001]6 H2 Z. m8 j2 t
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]
4 }8 b7 b6 `; Y! s - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]' _4 s ?1 K$ D+ \! u/ y! z, m4 d
- [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]
4 n7 ~. i9 h. ~+ @* b: [ - [PID: 1560 / Administrator][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]* V7 O0 Q* g q
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]/ |' J- Y: a& m! ?6 k: a/ Z
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]
Z2 j, U6 d: {8 o/ f - [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]; Y9 G+ U0 r: s% P' a- x6 x
- [PID: 1576 / Administrator][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] [Google Inc., 2, 0, 301, 1654]
r% a' \+ ?6 @' ^& o* J# v - [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\gtn.dll] [Google Inc., 2, 0, 301, 7164]
$ }! K# G0 A. `' w9 `9 _ - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]" k7 P6 v" ]0 v/ u/ M" K
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]9 [1 W* u! U2 E. R t; t
- [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\res_zh-CN.dll] [Google Inc., 2, 0, 301, 7164]5 t. {/ m4 A) n" }" R
- [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll] [Google Inc., 2, 0, 301, 7164]) g& H& L, c/ O' Y" m1 _
- [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001]
8 q! R( c8 H4 \ `* _. \$ l - [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]: ]* h! B( ^0 M
- [PID: 1648 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] b, p, S9 @5 q( Y+ e
- [PID: 1744 / SYSTEM][C:\Program Files\QvodPlayer\QvodTerminal.exe] [Shenzhen QVOD Technology Co.,Ltd, 2, 5, 0, 53]
3 I, z5 z8 g6 y" |2 q! k" i - [PID: 1860 / SYSTEM][C:\WINDOWS\system32\skeys.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]6 w- h5 A5 M) p/ M: v
- [PID: 1908 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]: t# S6 h0 g* s) l
- [PID: 1964 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)]
# r; P" b3 O6 t" p - [PID: 2772 / Administrator][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
$ E* Z2 Y4 Z. Y& [7 l4 t* F - [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001]
+ L. a p2 s1 y4 h - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]
1 L6 l' R4 ?' I0 e: U9 v - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]
& n. j4 B& b* B' p+ h5 K) \1 S - [c:\program files\google\googletoolbar2.dll] [Google Inc., 4, 0, 1606, 6690]
d5 l1 j, x* x4 V - [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll] [Google Inc., 2, 0, 301, 7164]
& h0 U# r% A% J! z$ H3 y+ B - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KASBrowserShield.DLL] [Kingsoft Corporation, 2008,04,15,2]3 I2 F2 Y& f1 H$ D
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\IEBuddy.dll] [Kingsoft Corporation, 2008,04,15,2]
7 P7 I: F% ~# t8 T4 k" { - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\IEBuddyExt.DLL] [Kingsoft Corporation, 2008,05,14,83]. @2 A; l7 z- y! N
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KANTray.dll] [Kingsoft Corporation, 2008,04,15,2]; p1 }, w0 Y9 D. }1 J
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KAVAFish.DLL] [Kingsoft Corporation, 2008,05,13,78]2 [! B! O4 D9 p2 h. }- t) T, s R
- [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510]/ z9 P! Z5 B* u" t' R
- [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
, `3 d& s3 I9 T3 v5 ~ - [C:\WINDOWS\system32\WN.IME] [深圳世强软件开发部 www.wn51.com, 2008, 3, 20, 1]
' E2 r% s/ ^2 a( s - [C:\Program Files\ShiQiang\wnime\Dll32\wnpy_StatusWnd.dll] [深圳世强软件开发部 www.wn51.com, 2008, 3, 20, 1]
9 f! E9 e6 g- d - [C:\Program Files\ShiQiang\wnime\Dll32\wnpy_CompWnd.dll] [深圳世强软件开发部 www.wn51.com, 2008, 3, 20, 1]
6 }" K) Y0 s8 l$ |( { - [C:\Program Files\ShiQiang\wnime\Dll32\wnpy_Query.dll] [深圳世强软件开发部 www.wn51.com, 2008, 3, 20, 1]: ^ d( d$ {9 i$ \
- [C:\WINDOWS\system32\SOGOUPY.IME] [Sogou.com Inc., 3.2.0.0]+ @% J6 d5 L/ e n7 g. |" k8 r
- [C:\Documents and Settings\Administrator\My Documents\SogouInput\Plugin\SgImeWord.dll] [Sogou.com Inc., 3.2.0.0]6 j( V& ?# S. a! |0 b' p
- [C:\WINDOWS\system32\WINWB98.IME] [Microsoft Corporation, 4.00.950]- b4 C |3 W% F; h
- [C:\WINDOWS\system32\WINWB86.IME] [Microsoft Corporation, 4.00.950]
# r% A" D q: P: Y. d$ x - [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]+ T2 @/ }0 W. \6 S
- [PID: 1124 / Administrator][C:\Program Files\Tencent\QQ\TXPlatform.exe] [Tencent, 1, 0, 170, 0]9 o) j: k" j/ b& T! ]. C
- [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001]' U3 s, A) p6 u, p
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]5 ]( @. v, U1 e3 Z: U
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]; Q$ E4 ]. L" m0 s+ ~
- [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]% }: s. A. l& g$ G+ `
- [PID: 928 / Administrator][F:\arvmon.exe] [任软工作室, 2.2.5.201]' r$ Z" Y/ J8 S2 u- \
- [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001], S, y. Q0 q) s# S ~
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]
3 e, @9 s% Y, a7 c2 C+ x2 V - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]
8 X+ P- ]6 c$ L9 G( U - [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]
8 i0 F" C. h% H9 @0 P1 e, q8 R/ F - [F:\Vdata.dll] [任软工作室, 2, 2, 1, 94]
U2 o( Y! E! F# P - [PID: 2540 / Administrator][F:\AutoGuarder.exe] [任软工作室, 2.2.5.201]
k, y+ b, M3 i( e% a7 |5 K - [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001]
! x% o0 ]% B; b) A - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]
9 x+ X' P" T# E - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]; K8 t8 _: ^. u$ e8 C
- [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]
. _7 ]8 W! Z: `, J - [PID: 2476 / Administrator][d:\我的文档\桌面\系统检测修复\SREngPS.EXE] [Smallfrogs Studio, 2.5.16.900]
) @% X6 Z# A; G' j% g0 q1 ? - [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1001]0 { d8 T( J9 n I! ^& Z! C
- [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KMailOEBand.DLL] [Kingsoft Corporation, 2008,04,02,5]
+ g8 m( @& f, |6 c& r) K" u - [C:\Program Files\Kingsoft\Kingsoft Internet Security 2008\kis.dll] [Kingsoft Corporation, 2008,04,22,364]; r& Z2 w/ c+ ~! {6 i- a+ Y
- [C:\Program Files\Tencent\QQ\DShared.dll] [Tencent, 2, 1, 0, 0]
: Y; D) C1 a4 w1 [" m4 e - [d:\我的文档\桌面\系统检测修复\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]8 v$ `: S( V$ s
- ==================================& t6 [/ j* b. r6 G; r0 i
- 文件关联
9 j; N( @% ^* Q2 L - .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]8 l1 X1 Z j: K( A9 A. U7 g! S) h
- .EXE OK. ["%1" %*]3 d/ J" r4 @. j3 C
- .COM OK. ["%1" %*]
' ~2 G0 N+ d0 A - .PIF OK. ["%1" %*]2 j6 z b! I5 W& T: t! T! h
- .REG OK. [regedit.exe "%1"]1 t* Y: ~3 `2 d( c' [* e @1 x0 S
- .BAT OK. ["%1" %*]
# U$ P8 B8 N5 [ - .SCR OK. ["%1" /S]
6 c/ _# p/ `/ r; l0 b - .CHM OK. ["C:\WINDOWS\hh.exe" %1]0 L$ ~6 Q6 S& z/ n7 N4 B# I$ g
- .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]) e/ v( y9 V- U; k9 ?% i
- .INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
- Z7 J; _# {6 h7 ~7 A - .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]% E0 q5 d1 M6 f& U: K, E
- .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]4 D# O5 q; A" s; w$ c
- .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] p P; @0 x; j
- .LNK OK. [{00021401-0000-0000-C000-000000000046}]- o; O! m4 F+ K9 T# M0 D: ?
- ==================================, G& }8 ~ t5 t1 c. D
- Winsock 提供者9 A) n/ M* d! D+ A/ H
- N/A2 c7 v5 M4 H5 j g6 f9 {0 D8 s! f
- ==================================
( _3 a( ~9 C; @6 f& R+ N% L - Autorun.inf( Q: r+ U1 t {2 o8 @( E5 m
- N/A
$ G3 w$ n5 r7 M H9 r+ [9 R$ C - ==================================
* O" h! s3 j; w - HOSTS 文件: g/ ~8 q' N8 K' [7 u
- N/A
: l3 C \6 R2 m( l+ { }) V" X9 L - ==================================' M- Q( |( D/ s; X
- 进程特权扫描
9 s: v' \! j9 ]. i9 Y- X - 特殊特权被允许: SeLoadDriverPrivilege [PID = 520, C:\WINDOWS\SYSTEM32\WINLOGON.EXE]
9 a1 D9 r9 M% h% n& F - 特殊特权被允许: SeDebugPrivilege [PID = 928, F:\ARVMON.EXE] u/ X0 U' P g( E2 ^% J6 s" ^
- 特殊特权被允许: SeLoadDriverPrivilege [PID = 928, F:\ARVMON.EXE]9 P( R* K9 L' m4 L& E' O3 u+ s% n4 w
- 特殊特权被允许: SeDebugPrivilege [PID = 2540, F:\AUTOGUARDER.EXE]& G: M8 i" e* m
- 特殊特权被允许: SeLoadDriverPrivilege [PID = 2540, F:\AUTOGUARDER.EXE]
7 A) }8 \* u1 Y/ M4 \& J1 A- L" T - ==================================
9 p. I, m$ X: y/ n' l: G6 C - API HOOK
6 o$ Z& P7 `! F& C - N/A
8 k4 n L* O4 E - ==================================
5 Z. ^8 ]) ? | - 隐藏进程% y9 P9 q2 A' Y' z: o0 F4 ]* X% S' Y
- N/A& I- y4 f8 [7 r4 }7 L
- ==================================* Q( C: v3 I& r7 N' Y; X: C
& n5 K) V5 G% F7 Z- y
|
|
IP卡
狗仔卡
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
显身卡
