[CODE]

2008-08-03,16:33:58

SysLog Scanner 1.0 - build 20080726
Arswp (http://www.arswp.com)

Windows XP Professional Service Pack 2 (build 2600) - Administrators



========================================
注册项

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <AVP><"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe">  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    <KKDelay><C:\Program Files\Rising\AntiSpyware\RunOnce.exe>  [(Verified)Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 3, C:2008-08-03 10:40 M:2008-08-03 10:40]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{57B86673-276A-48B2-BAE7-C6DBB3020EB8}><>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&U使用纳米机器人下载并收藏]
    <><C:\Program Files\NamiRobot纳米下载用的纳米机器人\Data\du.html>  [N/A, C:2008-04-29 22:10 M:2008-01-10 14:43]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&V使用Vagaa哇嘎下载]
    <><C:\Program Files\Vagaa\Data\vg.htm>  [N/A, C:2007-10-23 19:49 M:2007-07-21 01:29]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&使用BitComet下载]
    <><res://E:\Program Files\BitComet\BitComet.exe/AddLink.htm>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&使用BitComet下载全部链接]
    <><res://E:\Program Files\BitComet\BitComet.exe/AddAllLink.htm>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&使用BitComet下载本页视频]
    <><res://E:\Program Files\BitComet\BitComet.exe/AddVideo.htm>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载]
    <><E:\Program Files\Thunder Network\Thunder\Program\geturl.htm>  [N/A, C:2008-08-01 18:25 M:2007-12-10 14:17]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接]
    <><E:\Program Files\Thunder Network\Thunder\Program\getallurl.htm>  [N/A, C:2008-08-01 18:25 M:2007-12-10 14:17]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\发送到 Bluetooth 设备(&B)...]
    <><C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm>  [N/A, C:2006-08-16 07:16 M:2006-08-16 07:16]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)]
    <><res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情]
    <><E:\Program Files\QQ\AddEmotion.htm>  [N/A, C:2008-05-14 10:29 M:2008-05-14 10:29]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到反广告条]
    <><C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm>  [N/A, C:2008-02-08 18:26 M:2008-02-08 18:26]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    <WinlogonNotify: AtiExtEvent><Ati2evxx.dll>  [(Verified)ATI Technologies Inc., 6.14.10.4158, C:2007-02-02 15:56 M:2007-02-02 15:56]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    <WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll>  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)N/A, C:2004-08-04 16:48 M:2004-08-04 16:48]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)N/A, C:2004-08-04 16:48 M:2004-08-04 16:48]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)N/A, C:2007-05-20 07:23 M:2004-08-11 21:16]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}]
    <启动迅雷5><e:\Program Files\Thunder Network\Thunder\Thunder.exe>  [Thunder Networking Technologies,LTD, 5, 6, 8, 19, C:2008-08-01 18:25 M:2008-07-11 09:45]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\Bluetooth 打印机端口]
    <PrintMonitor: Bluetooth 打印机端口><bthcrp.dll>  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:54 M:2007-02-06 14:54]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\Microsoft Document Imaging Writer Monitor]
    <PrintMonitor: Microsoft Document Imaging Writer Monitor><mdimon.dll>  [Microsoft Corporation, 11.3.1897.0, C:2007-10-07 12:30 M:2003-06-18 17:31]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E}]
    <Web 反病毒统计><C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll>  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]


========================================
启动项

[蓝牙控制盘]
    <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\蓝牙控制盘.lnk --> "C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"  > [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:14 M:2007-02-06 15:14]


========================================
计划任务



========================================
组件


IE Extension
[Web 反病毒统计]
    {85E0B171-04FA-11D1-B7DA-00A0C90348D6}  <C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll>  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

Shell Extension
[Display Panning CPL Extension]
    {42071714-76d4-11d1-8b24-00a0c9068ff3}  <deskpan.dll>  []
[HyperTerminal Icon Ext]
    {88895560-9AA2-1069-930E-00AA0030EBC8}  <C:\WINDOWS\system32\hticons.dll>  [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2007-05-20 04:22 M:2004-06-06 22:13]
[ShellLink for Application References]
    {e82a2d71-5b2f-43a0-97b8-81be15854de8}  <C:\WINDOWS\system32\dfshim.dll>  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28]
[Shell Icon Handler for Application References]
    {E37E2028-CE1A-4f42-AF05-6CEABC4E5D75}  <C:\WINDOWS\system32\dfshim.dll>  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28]
[Catalyst Context Menu extension]
    {5E2121EE-0300-11D4-8D3B-444553540000}  <C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll>  [Copyright 2004, 2, 0, 0, 0, C:2006-12-19 20:16 M:2006-12-19 20:16]
[Synaptics Control Panel]
    {2F603045-309F-11CF-9774-0020AFD0CFF6}  <C:\Program Files\Synaptics\SynTP\SynTPCpl.dll>  [(Verified)Synaptics, Inc., 9.1.11 12Jan07, C:2007-05-20 05:57 M:2007-01-12 14:20]
[WinRAR shell extension]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2007-08-29 05:25 M:2004-12-27 09:18]
[Web 反病毒统计]
    {85E0B171-04FA-11D1-B7DA-00A0C90348D6}  <C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll>  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
[NeroDigitalIconHandler]
    {B327765E-D724-4347-8B16-78AE18552FC3}  <C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll>  []
[NeroDigitalPropSheetHandler]
    {7F1CF152-04F8-453A-B34C-E609530A9DC8}  <C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll>  []
[My Bluetooth Places]
    {6af09ec9-b429-11d4-a1fb-0090960218cb}  <C:\WINDOWS\system32\BTNeighborhood.dll>  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:07 M:2007-02-06 15:07]
[Monitor]
    {7842554E-6BED-11D2-8CDB-B05550C10000}  <C:\WINDOWS\system32\BTNCopy.dll>  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:40 M:2007-02-06 14:40]

Protocols
[Cor MIME Filter, CorFltr, CorFltr 1]
    {1E66F26B-79EE-11D2-8710-00C04F79ED0D}  <mscoree.dll>  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28]
[]
    {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC}  <E:\PROGRA~1\KuGoo3\InExtend\KUGOO3~1.OCX>  [N/A, C:2007-09-21 21:24 M:2007-09-21 21:30]

BrowserHelperObject
[ThunderAtOnce Class]
    {01443AEC-0FD1-40fd-9C87-E93D1494C233}  <E:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29, C:2008-08-01 18:25 M:2008-04-07 15:40]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-08-01 18:25 M:2008-04-29 14:42]

ActiveX Extension
[ThunderAtOnce Class]
    {01443AEC-0FD1-40FD-9C87-E93D1494C233}  <E:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29, C:2008-08-01 18:25 M:2008-04-07 15:40]
[AcroIEHlprObj Class]
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}  <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll>  [(Verified)Adobe Systems Incorporated, 7.0.0.2004121400, C:2004-12-14 01:56 M:2004-12-14 01:56]
[iTrusPTA Class]
    {1E0DFFCF-27FF-4574-849B-55007349FEDA}  <C:\WINDOWS\system32\aliedit\pta.dll>  [(Verified)Copyright 2001, 2, 5, 1, 509, C:2007-04-19 18:43 M:2008-04-29 10:36]
[RealPlayer RAM Download Handler]
    {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93}  <C:\WINDOWS\system32\rmoc3260.dll>  [(Verified)RealNetworks, Inc., 6.0.9.2533, C:2006-09-15 20:20 M:2006-09-15 20:20]
[Thunder Agent Class]
    {485463B7-8FB2-4B3B-B29B-8B919B0EACCE}  <E:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 4, 23, C:2008-08-01 18:25 M:2008-05-26 11:09]
[EditCtrl Class]
    {488A4255-3236-44B3-8F27-FA1AECAA8844}  <C:\WINDOWS\system32\aliedit\aliedit.dll>  [(Verified)Copyright 2007, 2, 1, 2, 1, C:2007-04-19 18:46 M:2008-05-20 10:51]
[XMP Class]
    {6483F145-A768-4C41-AACC-52D4D7845851}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>  [Copyright XunLei 2007, 2, 1, 2, 77, C:2007-11-01 17:02 M:2008-07-12 09:53]
[XDRM]
    {693571CB-54A3-4E90-9D52-EEAE1334E2D3}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work>  [Copyright XunLei 2007, 1, 0, 0, 7, C:2007-11-01 17:02 M:2008-07-12 09:53]
[WangWangObj Class]
    {6E213FC7-DD5A-4115-B7E6-D4C7838C361E}  <e:\Program Files\淘宝WangWang\WangWangX6.dll>  [(Verified)阿里巴巴软件(上海)有限公司, 1, 0, 0, 5, C:2008-07-16 20:58 M:2008-03-18 12:14]
[SSVHelper Class]
    {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}  <D:\Java\jre1.6.0_03\bin\ssv.dll>  [(Verified)Sun Microsystems, Inc., 6.0.30.5, C:2008-05-08 22:10 M:2007-09-25 01:11]
[MediaComm Class]
    {7670648D-461B-42AF-BDFE-46D26AF5EFF2}  <e:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin17.dll>  [Thunder Networking Technologies,LTD, 3, 1, 5, 78, C:2008-08-01 18:25 M:2008-07-12 09:53]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-08-01 18:25 M:2008-04-29 14:42]
[卡卡上网安全助手]
    {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}  <C:\WINDOWS\system32\UrlFilter.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-08-03 10:40 M:2008-08-03 10:40]
[DapCtrl Class]
    {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8}  <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.5803.60.(695).dll>  [ShenZhen Thunder Networking Technologies Ltd., 2, 1, 5803, 60, C:2008-08-01 18:25 M:2008-07-12 09:53]
[Shockwave Flash Object]
    {D27CDB6E-AE6D-11CF-96B8-444553540000}  <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx>  [Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32]
[Credential Manager for HP ProtectTools]
    {DF21F1DB-80C6-11D3-9483-B03D0EC10000}  <c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll>  [(Verified)Bioscrypt Inc., 2.1.078, C:2006-11-21 06:59 M:2006-11-21 06:59]
[Thunder DapPlayer]
    {EEDD6FF9-13DE-496B-9A1C-D78B3215E266}  <e:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\DapPlayer3.0.5712.71.695.dll>  [ShenZhen Thunder Networking Technologies Ltd., 3, 0, 5712, 71, C:2008-08-01 18:25 M:2008-07-12 09:53]
[XPPlayer Class]
    {F3E70CEA-956E-49CC-B444-73AFE593AD7F}  <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.0.0.181.(695).dll>  [Xunlei Networking Technologies,LTD, 2, 0, 0, 181, C:2008-08-01 18:25 M:2008-07-12 09:53]

Context Menu
[Kaspersky Anti-Virus]
    {dd230880-495a-11d1-b064-008048ec2fc5}  <C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ShellEx.dll>  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
[NamipanExt]
    {5696473A-FC50-4CA7-B87A-AF60201B04DD}  <C:\Program Files\NamiRobot纳米下载用的纳米机器人\Data\NamipanExt.dll>  [N/A, C:2008-04-29 22:10 M:2007-12-22 10:48]
[WinRAR]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2007-08-29 05:25 M:2004-12-27 09:18]


========================================
服务

[Bluetooth Service / btwdins][Running/Auto Start]
    <C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe>  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:02 M:2007-02-06 15:02]
[hpqwmiex / hpqwmiex][Running/Auto Start]
    <C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe>  [Hewlett-Packard Development Company, L.P., 2, 0, 1, 9, C:2006-05-02 15:41 M:2006-05-02 15:41]
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
    <"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe">  [Macrovision Corporation, 11.00.28844, C:2005-04-04 00:41 M:2005-04-04 00:41]
[McAfee Real-time Scanner / McShield][/Auto Start]
    <C:\Program Files\McAfee\VirusScan\McShield.exe>  []
[McAfee SystemGuards / McSysmon][Stopped/Manual Start]
    <C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe>  []
[MSSQLSERVER / MSSQLSERVER][Running/Auto Start]
    <C:\PROGRA~1\MICROS~4\MSSQL\binn\sqlservr.exe>  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:19]
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
    <C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe>  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:34 M:2005-05-03 22:50]
[SQLSERVERAGENT / SQLSERVERAGENT][Stopped/Manual Start]
    <C:\Program Files\Microsoft SQL Server\MSSQL\binn\sqlagent.exe -i MSSQLSERVER>  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-03 21:42]
[VisiBroker Smart Agent / VisiBroker Smart Agent][Stopped/Auto Start]
    <"C:\Program Files\华中高星\LimsAppServer\Server\osagent.exe">  []

[本地信道 / ASChannel][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k Cognizance --> "c:\Program Files\Hewlett-Packard\IAM\Bin\ASChnl.dll">  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|Cognizance Corporation, 1.27.0.160, C:2006-06-22 05:14 M:2006-06-22 05:14]
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
    <%SystemRoot%\system32\Ati2evxx.exe>  [(Verified)ATI Technologies Inc., 6.14.10.4158, C:2007-02-02 15:55 M:2007-02-02 15:55]
[卡巴斯基互联网安全套装 7.0 / AVP][Running/Auto Start]
    <"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r>  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]
[McAfee Framework Service / McAfeeFramework][/Auto Start]
    <"C:\Program Files\McAfee\Common Framework\FrameworkService.exe" /ServiceStart>  [(Verified)McAfee, Inc., 3.6.0.453, C:2007-09-21 21:21 M:2006-11-17 13:37]


========================================
驱动

[360IceBreaker / 360IceBreaker][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\drivers\360IceBreaker.sys>  [N/A, C:2008-08-03 13:52 M:2008-08-03 13:52]
[EagleNT / EagleNT][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\drivers\EagleNT.sys>  []
[Huawei DataCard USB Modem and USB Serial / hwdatacard][Stopped/Manual Start]
    <system32\DRIVERS\ewusbmdm.sys>  [Huawei Technologies Co., Ltd., 2. 0. 3. 0, C:2007-09-16 14:44 M:2007-04-18 10:54]
[Klif / klif][Running/System Start]
    <\??\C:\WINDOWS\system32\drivers\klif.sys>  [Kaspersky Lab, 6.12.10.377, C:2007-12-28 19:51 M:2007-12-28 19:51]
[npkcrypt / npkcrypt][Running/Auto Start]
    <\??\E:\Program Files\QQ\npkcrypt.sys>  [INCA Internet Co., Ltd., 2005. 11. 1. 1, C:2007-08-29 12:51 M:2007-02-02 19:04]
[Motorola USB Device / P2k][Stopped/Manual Start]
    <system32\DRIVERS\P2k.sys>  [Motorola Inc, 1.4, C:2007-11-18 15:44 M:2004-05-12 08:22]
[PxHelp20 / PxHelp20][Running/Boot Start]
    <System32\Drivers\PxHelp20.sys>  [Sonic Solutions, 2.03.27a, C:2005-01-26 02:03 M:2005-01-26 02:03]
[sptd / sptd][Running/Boot Start]
    <System32\Drivers\sptd.sys>  [N/A, C:2007-10-29 13:07 M:2008-07-31 18:48]
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
    <system32\DRIVERS\tcpip.sys>  [Microsoft Corporation, 5.1.2600.3244 (xpsp_sp2_gdr.071030-1259), C:2004-08-04 15:14 M:2007-10-31 01:20]
[Conexant Setup API / UIUSys][Stopped/Manual Start]
    <system32\DRIVERS\UIUSYS.SYS>  []
[Motorola USB Modem Driver for MPT / usbsermpt][Stopped/Manual Start]
    <system32\DRIVERS\usbsermpt.sys>  [Microsoft Corporation, 5.00.2195.6655, C:2007-10-15 00:02 M:2008-02-23 21:02]

[Accelerometer / Accelerometer][Running/Manual Start]
    <system32\DRIVERS\Accelerometer.sys>  [(Verified)Hewlett-Packard Corporation, V1.0.4 built by: WinDDK, C:2007-05-20 06:13 M:2006-07-24 00:00]
[ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
    <system32\drivers\ADIHdAud.sys>  [(Verified)Analog Devices, Inc., 5.10.01.5161 built by: WinDDK, C:2007-02-16 13:26 M:2007-02-16 13:26]
[AE Audio Service / AEAudio][Running/Manual Start]
    <system32\drivers\AEAudio.sys>  [(Verified)Andrea Electronics Corporation, 4.2.32.5, C:2006-08-07 07:57 M:2006-08-07 07:57]
[Agere Systems Soft Modem / AgereSoftModem][Running/Manual Start]
    <system32\DRIVERS\AGRSM.sys>  [(Verified)Agere Systems, 2.1.72 06/29/2006 13:13:03, C:2007-05-20 07:15 M:2007-01-02 14:01]
[AMD Processor Driver / AmdK8][Running/System Start]
    <system32\DRIVERS\AmdK8.sys>  [(Verified)Advanced Micro Devices, 1.3.2 (dnsrv(wmbla).060701-2226), C:2007-05-20 05:38 M:2006-07-01 22:43]
[ati2mtag / ati2mtag][Running/Manual Start]
    <system32\DRIVERS\ati2mtag.sys>  [(Verified)ATI Technologies Inc., 6.14.10.6666, C:2007-02-02 16:03 M:2007-02-02 16:03]
[AuthenTec TruePrint USB Driver (SwipeSensor) / ATSWPDRV][Running/Manual Start]
    <system32\DRIVERS\ATSwpDrv.sys>  [(Verified)AuthenTec, Inc., 7.7.0.78, C:2007-02-22 18:40 M:2007-02-22 18:40]
[Broadcom NetLink Gigabit Ethernet / b57w2k][Running/Manual Start]
    <system32\DRIVERS\b57xp32.sys>  [(Verified)Broadcom Corporation, 10.24.0.0 built by: WinDDK, C:2007-05-20 06:00 M:2006-12-15 14:44]
[Broadcom 802.11 网络适配器驱动程序 / BCM43XX][Stopped/Manual Start]
    <system32\DRIVERS\bcmwl5.sys>  [(Verified)Broadcom Corporation, 4.100.15.5, C:2007-05-20 05:58 M:2006-11-01 08:55]
[蓝牙音频设备 / btaudio][Running/Manual Start]
    <system32\drivers\btaudio.sys>  [(Verified)Broadcom Corporation., 5.1.0.2900, C:2008-07-16 22:44 M:2007-02-14 14:20]
[蓝牙虚拟通信驱动程序 / BTDriver][Running/Manual Start]
    <system32\DRIVERS\btport.sys>  [(Verified)Broadcom Corporation., 5.1.0.2400, C:2008-07-16 22:44 M:2007-02-14 14:20]
[蓝牙总线枚举器 / BTKRNL][Running/Manual Start]
    <system32\DRIVERS\btkrnl.sys>  [(Verified)Broadcom Corporation., 5.1.0.3000, C:2008-07-16 22:44 M:2007-02-14 14:20]
[蓝牙局域网接入服务器 / BTWDNDIS][Stopped/Manual Start]
    <system32\DRIVERS\btwdndis.sys>  [(Verified)Broadcom Corporation., 5.1.0.2400, C:2008-07-16 22:44 M:2007-02-14 14:20]
[蓝牙调制解调器 / btwmodem][Stopped/Manual Start]
    <system32\DRIVERS\btwmodem.sys>  [(Verified)Broadcom Corporation., 5.1.0.2400, C:2008-07-16 22:44 M:2007-02-14 14:21]
[WIDCOMM USB Bluetooth Driver / BTWUSB][Stopped/Manual Start]
    <System32\Drivers\btwusb.sys>  [(Verified)Broadcom Corporation., 5.1.0.2900, C:2008-07-16 22:44 M:2007-02-14 14:21]
[eabfiltr / eabfiltr][Running/System Start]
    <system32\DRIVERS\eabfiltr.sys>  [(Verified)Hewlett-Packard Development Company, L.P., 4.20.02.04, C:2007-05-20 05:59 M:2006-11-30 10:24]
[Hardlock / Hardlock][Running/Auto Start]
    <\??\C:\WINDOWS\system32\drivers\hardlock.sys>  [(Verified)Aladdin Knowledge Systems Ltd., 3.40, C:2008-02-11 11:25 M:2005-07-28 08:18]
[HBtnKey / HBtnKey][Running/Manual Start]
    <system32\DRIVERS\cpqbttn.sys>  [(Verified)Hewlett-Packard Development Company, L.P., 4.20.02.03, C:2007-05-20 05:59 M:2006-06-28 09:54]
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
    <system32\DRIVERS\HDAudBus.sys>  [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2005-01-07 17:07 M:2005-01-07 17:07]
[HP Disk Filter Driver / hpdskflt][Running/Boot Start]
    <system32\DRIVERS\hpdskflt.sys>  [(Verified)Hewlett-Packard Corporation, V1.0.4 built by: WinDDK, C:2007-05-20 06:13 M:2006-07-24 00:00]
[Kl1 / kl1][Running/Boot Start]
    <system32\drivers\kl1.sys>  [(Verified)Kaspersky Lab, 6.1.30.0, C:2007-10-31 13:41 M:2008-08-03 15:36]
[Kaspersky Anti-Virus NDIS Filter / klim5][Running/Manual Start]
    <system32\DRIVERS\klim5.sys>  [(Verified)Kaspersky Lab, 6.1.26.0, C:2007-12-13 13:28 M:2007-12-13 13:28]
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
    <system32\DRIVERS\ptilink.sys>  [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-06-06 22:13 M:2004-06-06 22:13]
[Secdrv / Secdrv][Running/Auto Start]
    <system32\DRIVERS\secdrv.sys>  [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-07-18 03:36 M:2007-11-13 18:25]
[StarForce Protection Environment Driver (version 1.x.a) / sfdrv01a][Running/Boot Start]
    <System32\drivers\sfdrv01a.sys>  [(Verified)Protection Technology (StarForce), 1.47, C:2006-07-05 20:46 M:2006-07-05 20:46]
[StarForce Protection Helper Driver (version 2.x) / sfhlp02][Running/Boot Start]
    <System32\drivers\sfhlp02.sys>  [(Verified)Protection Technology (StarForce), 2.8, C:2006-06-14 22:56 M:2006-06-14 22:56]
[StarForce Protection Synchronization Driver (version 4.x) / sfsync04][Running/Boot Start]
    <System32\drivers\sfsync04.sys>  [(Verified)Protection Technology (StarForce), 4.17, C:2006-07-13 15:56 M:2006-07-13 15:56]
[SAMSUNG Mobile USB Device 1.0 driver (WDM) / ss_bus][Stopped/Manual Start]
    <system32\DRIVERS\ss_bus.sys>  [(Verified)MCCI Corporation, V4.40, C:2008-05-17 23:15 M:2007-05-02 11:11]
[SAMSUNG Mobile USB Modem 1.0 Filter / ss_mdfl][Stopped/Manual Start]
    <system32\DRIVERS\ss_mdfl.sys>  [(Verified)MCCI Corporation, V4.40, C:2008-05-17 23:15 M:2007-05-02 11:11]
[SAMSUNG Mobile USB Modem 1.0 Drivers / ss_mdm][Stopped/Manual Start]
    <system32\DRIVERS\ss_mdm.sys>  [(Verified)MCCI Corporation, V4.40, C:2008-05-17 23:15 M:2007-05-02 11:11]
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
    <system32\DRIVERS\SynTP.sys>  [(Verified)Synaptics, Inc., 9.1.11 12Jan07, C:2007-05-20 05:57 M:2007-01-12 14:04]
[Sony Ericsson W700 Driver driver (WDM) / W700bus][Stopped/Manual Start]
    <system32\DRIVERS\W700bus.sys>  [(Verified)MCCI, V4.34, C:2007-10-24 21:50 M:2006-02-19 23:47]
[Sony Ericsson W700 USB WMC Device Management Drivers (WDM) / W700mgmt][Stopped/Manual Start]
    <system32\DRIVERS\W700mgmt.sys>  [(Verified)MCCI, V4.34, C:2007-10-24 22:12 M:2006-02-19 23:48]
[Sony Ericsson W700 USB WMC OBEX Interface / W700obex][Stopped/Manual Start]
    <system32\DRIVERS\W700obex.sys>  [(Verified)MCCI, V4.34, C:2007-10-24 22:12 M:2006-02-19 23:48]
[{95808DC4-FA4A-4C74-92FE-5B863F82066B} / {95808DC4-FA4A-4C74-92FE-5B863F82066B}][Running/Auto Start]
    <\??\C:\Program Files\CyberLink\PowerDVD\000.fcl>  [(Verified)Cyberlink Corp., 2.0.07.0914, C:2007-09-19 21:37 M:2007-09-19 21:37]


========================================
进程

[PID: 1048 / SYSTEM]   \SystemRoot\System32\smss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]

[PID: 1120 / SYSTEM]   \??\C:\WINDOWS\system32\csrss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]

[PID: 1152 / SYSTEM]   \??\C:\WINDOWS\system32\winlogon.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\Ati2evxx.dll  [(Verified)ATI Technologies Inc., 6.14.10.4158, C:2007-02-02 15:56 M:2007-02-02 15:56]
    C:\WINDOWS\system32\klogon.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\System32\BCMLogon.dll  [Broadcom Corporation, 4.100.15.5, C:2007-05-20 06:05 M:2006-11-01 08:57]
    C:\WINDOWS\System32\MFC71.DLL  [Microsoft Corporation, 7.10.3077.0, C:2007-05-20 06:05 M:2006-11-01 08:57]
    C:\WINDOWS\System32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2007-05-20 06:05 M:2006-11-01 08:57]
    C:\WINDOWS\System32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:2007-05-20 06:05 M:2006-11-01 08:57]
    C:\Program Files\三星手机\Samsung PC Studio 3\MFC71CHS.DLL  [Microsoft Corporation, 7.10.3077.0, C:2008-05-17 23:18 M:2005-11-19 19:16]

[PID: 1196 / SYSTEM]   C:\WINDOWS\system32\services.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 1208 / SYSTEM]   C:\WINDOWS\system32\lsass.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll  [(Verified)Kaspersky Lab, 7.0.5.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]

[PID: 1364 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\hewlett-packard\iam\bin\aschnl.dll  [Cognizance Corporation, 1.27.0.160, C:2006-06-22 05:14 M:2006-06-22 05:14]
    C:\WINDOWS\system32\MSVCR70.dll  [Microsoft Corporation, 7.00.9955.0, C:2007-05-20 06:07 M:2005-01-19 16:25]
    c:\program files\hewlett-packard\iam\bin\ItMsg.dll  [Cognizance Corporation, 1.21.0.412, C:2007-01-09 02:08 M:2007-01-09 02:08]

[PID: 1408 / SYSTEM]   C:\WINDOWS\system32\Ati2evxx.exe   [(Verified)ATI Technologies Inc., 6.14.10.4158, C:2007-02-02 15:55 M:2007-02-02 15:55]
    C:\WINDOWS\system32\Ati2edxx.dll  [(Verified)ATI Technologies, Inc., 6, 14, 10, 2510, C:2007-02-02 15:56 M:2007-02-02 15:56]
    C:\WINDOWS\system32\atipdlxx.dll  [(Verified)ATI Technologies, Inc., 6, 14, 10, 2515, C:2007-02-02 15:57 M:2007-02-02 15:57]

[PID: 1424 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 1544 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 1708 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 1780 / SYSTEM]   C:\WINDOWS\system32\Ati2evxx.exe   [(Verified)ATI Technologies Inc., 6.14.10.4158, C:2007-02-02 15:55 M:2007-02-02 15:55]
    C:\WINDOWS\system32\Ati2edxx.dll  [(Verified)ATI Technologies, Inc., 6, 14, 10, 2510, C:2007-02-02 15:56 M:2007-02-02 15:56]
    C:\WINDOWS\system32\atipdlxx.dll  [(Verified)ATI Technologies, Inc., 6, 14, 10, 2515, C:2007-02-02 15:57 M:2007-02-02 15:57]
    C:\WINDOWS\system32\ati2evxx.dll  [(Verified)ATI Technologies Inc., 6.14.10.4158, C:2007-02-02 15:56 M:2007-02-02 15:56]

[PID: 1796 / SYSTEM]   C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe   [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:02 M:2007-02-06 15:02]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 1996 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 208 / LOCAL SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll  [(Verified)Kaspersky Lab, 7.0.5.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]

[PID: 368 / SYSTEM]   C:\WINDOWS\system32\spoolsv.exe   [(Verified)Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519), C:2004-08-04 16:52 M:2005-06-11 07:53]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\bthcrp.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:54 M:2007-02-06 14:54]
    C:\WINDOWS\system32\WidcommSdk.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:31 M:2007-02-06 14:31]
    C:\WINDOWS\system32\wbtapi.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:33 M:2007-02-06 14:33]
    C:\WINDOWS\system32\mdimon.dll  [Microsoft Corporation, 11.3.1897.0, C:2007-10-07 12:30 M:2003-06-18 17:31]
    C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll  [Microsoft Corporation, 11.3.1897.0, C:2007-10-07 12:30 M:2003-06-18 17:31]
    C:\WINDOWS\System32\spool\PRTPROCS\W32X86\vprproc.dll  [Windows (R) 2000 DDK provider, 5.00.2195.1620, C:2007-09-22 08:33 M:2005-01-24 11:39]

[PID: 644 / SYSTEM]   C:\WINDOWS\system32\inetsrv\inetinfo.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2007-10-12 16:30 M:2004-08-04 08:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]

[PID: 1984 / SYSTEM]   C:\PROGRA~1\MICROS~4\MSSQL\binn\sqlservr.exe   [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:19]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:2007-05-20 06:05 M:2006-11-01 08:57]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2007-05-20 06:05 M:2006-11-01 08:57]
    C:\PROGRA~1\MICROS~4\MSSQL\binn\opends60.dll  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:02]
    C:\PROGRA~1\MICROS~4\MSSQL\binn\sqlsort.dll  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:02]
    C:\PROGRA~1\MICROS~4\MSSQL\binn\ums.dll  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:02]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\PROGRA~1\MICROS~4\MSSQL\binn\Resources\2052\sqlevn70.RLL  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:19]
    C:\Program Files\Microsoft SQL Server\MSSQL\binn\SSNETLIB.dll  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:02]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\PROGRA~1\MICROS~4\MSSQL\binn\SSmsLPCn.dll  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:02]
    C:\PROGRA~1\MICROS~4\MSSQL\binn\SSnmPN70.dll  [Microsoft Corporation, 2000.080.2039.00, C:2007-10-12 15:33 M:2005-05-04 00:02]

[PID: 784 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 816 / LOCAL SERVICE]   C:\WINDOWS\system32\wdfmgr.exe   [(Verified)Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act), C:2004-08-10 22:05 M:2004-08-10 22:05]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 864 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 960 / SYSTEM]   C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe   [Hewlett-Packard Development Company, L.P., 2, 0, 1, 9, C:2006-05-02 15:41 M:2006-05-02 15:41]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 2348 / hp]   C:\WINDOWS\Explorer.EXE   [(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll  [(Verified)Kaspersky Lab, 7.0.5.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\btmmhook.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:19 M:2007-02-06 15:19]
    C:\Program Files\WinRAR\rarext.dll  [N/A, C:2007-08-29 05:25 M:2004-12-27 09:18]
    C:\Program Files\NamiRobot纳米下载用的纳米机器人\Data\NamipanExt.dll  [N/A, C:2008-04-29 22:10 M:2007-12-22 10:48]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2007-05-20 06:05 M:2006-11-01 08:57]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ShellEx.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    E:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29, C:2008-08-01 18:25 M:2008-04-07 15:40]
    E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-08-01 18:25 M:2008-04-29 14:42]
    C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll  [Adobe Systems, Inc., 7.0.0.0, C:2004-12-14 02:20 M:2004-12-14 02:20]
    C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll  [N/A, C:2007-02-06 15:16 M:2007-02-06 15:16]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\klscav.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\prremote.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\prloader.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\prkernel.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\params.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\pxstub.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\tempfile.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\nfio.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\fsdrvplg.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\basegui.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\thpimpl.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\winreg.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx  [Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32]
    C:\WINDOWS\system32\l3codeca.acm  [(Verified)Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305, C:2004-08-04 16:51 M:2004-08-04 16:51]
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll  [Copyright 2004, 2, 0, 0, 0, C:2006-12-19 20:16 M:2006-12-19 20:16]

[PID: 2468 / hp]   C:\WINDOWS\system32\ctfmon.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 2576 / hp]   C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe   [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:14 M:2007-02-06 15:14]
    C:\WINDOWS\system32\wbtapi.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:33 M:2007-02-06 14:33]
    C:\WINDOWS\system32\btosif.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:52 M:2007-02-06 14:52]
    C:\WINDOWS\system32\btwhidcs.DLL  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:10 M:2007-02-06 15:10]
    C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll  [Broadcom Corporation., 5.1.0.3000, C:2008-07-16 22:46 M:2007-02-14 14:20]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\btrez.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 14:42 M:2007-02-14 14:21]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll  [(Verified)Kaspersky Lab, 7.0.5.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\system32\btwicons.dll  [Copyright (C) 2006, 1, 0, 0, 1, C:2007-02-06 15:20 M:2007-02-06 15:20]
    C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll  [N/A, C:2007-02-06 15:16 M:2007-02-06 15:16]
    C:\WINDOWS\system32\btmmhook.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:19 M:2007-02-06 15:19]

[PID: 3192 / LOCAL SERVICE]   C:\WINDOWS\System32\alg.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]

[PID: 1876 / hp]   C:\WINDOWS\system32\taskmgr.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\btmmhook.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:19 M:2007-02-06 15:19]

[PID: 2040 / hp]   C:\Program Files\Rising\AntiSpyware\knownsvr.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.11, C:2008-08-03 10:40 M:2008-08-03 10:40]
    C:\Program Files\Rising\AntiSpyware\NComm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.6, C:2008-08-03 10:40 M:2008-08-03 10:40]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.24, C:2008-08-03 10:40 M:2008-08-03 10:40]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-08-03 10:40 M:2008-08-03 10:40]

[PID: 3356 / hp]   C:\Program Files\Internet Explorer\iexplore.exe   [(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2007-05-20 04:24 M:2004-08-04 16:52]
    C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll  [(Verified)Kaspersky Lab, 7.0.5.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\btmmhook.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:19 M:2007-02-06 15:19]
    E:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29, C:2008-08-01 18:25 M:2008-04-07 15:40]
    E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-08-01 18:25 M:2008-04-29 14:42]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\klscav.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\prremote.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\prloader.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\prkernel.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\params.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\pxstub.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\tempfile.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx  [Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\nfio.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\fsdrvplg.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\basegui.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:36 M:2008-02-08 18:36]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\thpimpl.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    c:\program files\kaspersky lab\kaspersky internet security 7.0\winreg.ppl  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\msxmlfilta.dll  [Microsoft Corporation, 1.0.0.1, C:2008-07-31 18:48 M:2008-07-31 18:48]
    C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll  [N/A, C:2007-02-06 15:16 M:2007-02-06 15:16]

[PID: 4068 / hp]   G:\新建文件夹\新版arswp\ArSwp.exe   [(Verified)ArSwp.com, 2, 8, 0, 728, C:2008-07-29 22:36 M:2008-07-29 22:36]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll  [(Verified)Kaspersky Lab, 7.0.5.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\system32\btmmhook.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:19 M:2007-02-06 15:19]
    G:\新建文件夹\新版arswp\plugin\ArFix.dll  [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2007-11-28 15:19 M:2007-11-28 15:19]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\adialhk.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\system32\mscoree.dll  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28]
    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorie.dll  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28]

[PID: 3904 / hp]   C:\WINDOWS\notepad.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2007-05-20 04:14 M:2004-08-04 16:52]
    C:\WINDOWS\system32\btmmhook.dll  [Broadcom Corporation., 5.1.0.3000, C:2007-02-06 15:19 M:2007-02-06 15:19]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll  [(Verified)Kaspersky Lab, 7.0.1.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll  [(Verified)Kaspersky Lab, 7.0.5.325, C:2008-02-08 18:37 M:2008-02-08 18:37]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]


========================================
文件关联



========================================
AutoRun.INF



========================================
Winsock提供者



[/CODE]