[CODE] 2008-08-03,22:35:50 SysLog Scanner 1.0 - build 20080726 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 2 (build 2600) - Administrators ======================================== 注册项 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <; "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background> [] [Upwin Corp., 3, 9, 2, 4, C:2008-04-09 11:49 M:2008-04-09 09:07] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsprod.exe" -run -n Workstation -v 5.0.0.0 -chkss> [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] [Upwin Corp., 3, 9, 2, 4, C:2008-04-09 11:49 M:2008-04-09 09:07] <360Safebox><"C:\Program Files\360Safebox\SafeBoxTray.exe" /r> [(Verified)360安全中心, 2, 1, 1, 1002, C:2008-06-11 20:48 M:2008-06-11 20:48] <360Safetray><\\192.168.1.35\c$\Program Files\360safe\safemon\360Tray.exe /start> [(Verified)奇虎网, 4, 1, 8, 1004, C:2008-07-04 14:06 M:2008-07-04 14:06] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\转换为 Adobe PDF] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\转换选取内容为 Adobe PDF] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\转换选取内容到现有的 PDF] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\转换选定的链接到 Adobe PDF] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\转换选定的链接到现有的 PDF] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\转换链接目标为 Adobe PDF] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\转换链接目标到现有的 PDF] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\追加到现有的 PDF] <> [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00|(Verified)N/A, C:2004-08-17 13:00 M:2004-08-17 13:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00|(Verified)N/A, C:2004-08-17 13:00 M:2004-08-17 13:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00|(Verified)N/A, C:2006-11-02 23:38 M:2006-11-02 23:38] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\Adobe PDF Port] [(Verified)Adobe Systems Incorporated., 8.0.0.00, C:2006-09-29 06:56 M:2006-09-29 06:56] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\pcAnywhere Remote Printing] [Symantec Corporation, 9.2.1, C:2001-08-15 21:10 M:2001-08-15 21:10] ======================================== 启动项 [腾讯QQ] "\\192.168.1.35\c$\Program Files\Tencent\QQ\QQ.exe" > [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:40 M:2008-05-14 17:40] ======================================== 计划任务 ======================================== 组件 Shell Extension [Display Panning CPL Extension] {42071714-76d4-11d1-8b24-00a0c9068ff3} [] [HyperTerminal Icon Ext] {88895560-9AA2-1069-930E-00AA0030EBC8} [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2008-01-21 12:15 M:2004-08-17 21:00] [Catalyst Context Menu extension] {5E2121EE-0300-11D4-8D3B-444553540000} [Copyright 2004, 2, 0, 0, 0, C:2007-03-02 11:44 M:2007-03-02 11:44] [即时通发送文件] {B4C07156-C663-4DB6-B849-311DE813F57C} [北京梦龙科技有限公司, 1.0.0.6, C:2008-04-09 11:49 M:2006-09-15 14:58] [WinRAR shell extension] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2008-04-09 09:50 M:2004-12-27 09:18] [PowerWord ExplorerBar] {47B92A27-8252-420D-9630-378EF61434D7} [金山软件股份有限公司, 1, 0, 0, 0, C:2008-04-09 10:12 M:2003-01-07 16:24] [PhoneBrowser] {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} [Nokia, 6, 81, 46, 1, C:2006-06-12 09:08 M:2006-06-12 09:08] [Adobe.Acrobat.ContextMenu] {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} [(Verified)Adobe Systems Inc., 8.0.5.2006102200\0, C:2006-10-22 23:44 M:2006-10-22 23:44] [NeroCoverEd Live Icons] {97F68CE3-7146-45FF-BE24-D9A7DD7CB8A2} [(Verified)Nero AG, 3, 3, 1, 1, C:2008-02-28 09:53 M:2008-02-28 09:53] [NeroDigitalIconHandler] {B327765E-D724-4347-8B16-78AE18552FC3} [(Verified)Nero AG, 3, 1, 0, 11, C:2008-03-05 11:41 M:2008-03-05 11:41] [NeroDigitalPropSheetHandler] {7F1CF152-04F8-453A-B34C-E609530A9DC8} [(Verified)Nero AG, 3, 1, 0, 11, C:2008-03-05 11:41 M:2008-03-05 11:41] [Sucop File Force Killer] {B62954A8-2446-4AEA-A2EE-489863352A51} [DSW Lab, 1.0.0.7, C:2008-08-03 20:29 M:2008-03-31 19:27] Protocols [PowerWord Asychronous Pluggable Protocol Handler] {C21F5C32-F57A-4A0D-8E0A-B672691C52D0} [金山软件股份有限公司, 1, 0, 0, 0, C:2008-04-09 10:12 M:2003-01-07 16:24] BrowserHelperObject [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [(Verified)Adobe Systems Incorporated, 8.0.0.2006102200, C:2006-10-22 23:08 M:2006-10-22 23:08] [Adobe PDF Conversion Toolbar Helper] {AE7CD045-E861-484f-8273-0445EE161910} [(Verified)Adobe Systems Incorporated, 8.0.0.0, C:2006-10-22 23:20 M:2006-10-22 23:20] ToolBar [Adobe PDF] {47833539-D0C5-4125-9FA8-0819E2EAAC93} [(Verified)Adobe Systems Incorporated, 8.0.0.0, C:2006-10-22 23:20 M:2006-10-22 23:20] ActiveX Extension [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} [(Verified)Thunder Networking Technologies,LTD, 1.0.5.27, C:2008-04-09 21:26 M:2008-03-11 21:56] [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [(Verified)Adobe Systems Incorporated, 8.0.0.2006102200, C:2006-10-22 23:08 M:2006-10-22 23:08] [GerneralPeerID Class] {0A47E819-F82E-4D5D-B806-6A9EA94D68CD} [Copyright 2007, 1, 0, 0, 1, C:2008-04-09 21:25 M:2008-03-26 20:14] [MrFileClientX Control] {17BF6B53-29EF-45D8-9378-9A2AB23EF240} [北京梦龙科技有限公司, 1.0.0.66, C:2008-04-09 11:49 M:2006-12-13 18:40] [FormXForICU Control] {2C967898-908B-4C25-9E0F-6EF31F447AB0} [Morrowsoft, 1.0.0.34, C:2008-04-09 11:49 M:2006-12-12 09:57] [Adobe PDF] {47833539-D0C5-4125-9FA8-0819E2EAAC93} [(Verified)Adobe Systems Incorporated, 8.0.0.0, C:2006-10-22 23:20 M:2006-10-22 23:20] [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [Thunder Networking Technologies,LTD, 5, 0, 4, 23, C:2008-04-09 21:26 M:2007-12-10 14:17] [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [Copyright XunLei 2007, 1, 0, 3, 37, C:2008-04-09 21:26 M:2008-04-09 16:23] [XDRM] {693571CB-54A3-4E90-9D52-EEAE1334E2D3} [Copyright XunLei 2007, 1, 0, 0, 6, C:2008-04-09 21:26 M:2008-04-09 16:23] [MediaComm Class] {7670648D-461B-42AF-BDFE-46D26AF5EFF2} [Thunder Networking Technologies,LTD, 3, 1, 4, 76, C:2008-04-09 21:25 M:2008-03-26 20:14] [360SafeLive] {87515F61-A66C-4319-A0E0-D416CB8059E3} [360.cn, 1, 0, 1, 1027, C:2008-03-28 17:27 M:2008-03-28 17:27] [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-04-09 21:26 M:2008-04-29 14:42] [WebVGPlayer Class] {AA899B43-24BD-4B6B-BBD0-45557D8D11E0} [N/A, C:2007-09-20 16:41 M:2007-09-20 16:41] [Thunder DapCtrl] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} [ShenZhen Thunder Networking Technologies Ltd., 1, 6, 5710, 37, C:2008-04-22 15:23 M:2008-04-09 15:32] [Adobe PDF Conversion Toolbar Helper] {AE7CD045-E861-484F-8273-0445EE161910} [(Verified)Adobe Systems Incorporated, 8.0.0.0, C:2006-10-22 23:20 M:2006-10-22 23:20] [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 07:32 M:2008-03-25 07:32] [FlashFXP Helper for Internet Explorer] {E5A1691B-D188-4419-AD02-90002030B8EE} [(Verified)IniCom Networks, Inc., 3.0.0.1015, C:2008-05-13 10:26 M:2005-03-10 20:35] [Thunder DapPlayer] {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} [ShenZhen Thunder Networking Technologies Ltd., 3, 0, 578, 69, C:2008-04-09 21:26 M:2008-03-26 20:14] [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} [Thunder, 1.2.9.152, C:2008-04-09 21:26 M:2008-04-08 10:05] Context Menu [Adobe.Acrobat.ContextMenu] {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} [(Verified)Adobe Systems Inc., 8.0.5.2006102200\0, C:2006-10-22 23:44 M:2006-10-22 23:44] [Cover Designer] {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} [(Verified)Nero AG, 3, 3, 1, 1, C:2008-02-28 09:53 M:2008-02-28 09:53] [Kaspersky Anti-Virus] {DD230880-495A-11D1-B064-008048EC2FC5} [Kaspersky Lab, 5.0.200.0, C:2005-05-31 14:55 M:2005-05-31 14:55] [Mricu] {B4C07156-C663-4DB6-B849-311DE813F57C} [北京梦龙科技有限公司, 1.0.0.6, C:2008-04-09 11:49 M:2006-09-15 14:58] [Sucop File Force Killer] {B62954A8-2446-4AEA-A2EE-489863352A51} [DSW Lab, 1.0.0.7, C:2008-08-03 20:29 M:2008-03-31 19:27] [WinRAR] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2008-04-09 09:50 M:2004-12-27 09:18] ======================================== 服务 [ATI Smart / ATI Smart][Stopped/Auto Start] [Copyright (C) 1998 - 2007 ATI Technologies Inc., 5.13.0027, C:2008-01-21 12:26 M:2007-09-28 21:05] [pcAnywhere Host Service / awhost32][Stopped/Manual Start] [Symantec Corporation, 11.5.0.121, C:2004-11-01 11:50 M:2004-11-01 11:50] [d2cs service / d2cs][Stopped/Auto Start] [N/A, C:2008-06-06 13:05 M:2004-03-13 19:38] [d2dbs service / d2dbs][Stopped/Auto Start] [N/A, C:2008-06-06 13:05 M:2004-03-13 19:36] [Diablo II Close Game Server / D2GS][Stopped/Auto Start] [] [FLEXnet Licensing Service / FLEXnet Licensing Service][Stopped/Manual Start] <"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"> [Macrovision Europe Ltd., 11.03.005, C:2008-05-23 09:14 M:2008-05-23 09:14] [InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"> [Macrovision Corporation, 10.50.125, C:2004-10-22 03:24 M:2004-10-22 03:24] [KingGame_SQL / KingGame_SQL][Running/Auto Start] [N/A, C:2008-04-11 10:23 M:2006-08-26 02:14] [KingGame_WEB / KingGame_WEB][Stopped/Auto Start] <"e:\kingfulsrv\web\Apache2\bin\httpd.exe" -k runservice> [Apache Software Foundation, 2.2.4, C:2008-04-11 10:23 M:2007-01-09 23:17] [KLBLMain / KLBLMain][Running/Auto Start] <"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kavmm.exe" -run bl -n Workstation -v 5.0.0.0 -ttsr 10000000> [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] [卡巴斯基网络代理 / klnagent][Running/Auto Start] <"C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe"> [Kaspersky Lab, 5.0.0474.0, C:2005-09-28 17:35 M:2005-09-28 17:35] [PLFlash DeviceIoControl Service / PLFlash DeviceIoControl Service][Running/Auto Start] [Prolific Technology Inc., 1, 6, 0, 0, C:2006-12-19 09:30 M:2006-12-19 09:30] [ServiceLayer / ServiceLayer][Stopped/Manual Start] <"C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe"> [Nokia., 6, 81, 60, 0, C:2006-06-05 14:59 M:2006-06-05 14:59] [SOSSrv / SOSSrv][Stopped/Auto Start] [StarSoftComm Corporation, 2.5, C:2008-01-21 12:37 M:2007-04-05 14:57] [Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start] <%SystemRoot%\system32\Ati2evxx.exe> [(Verified)ATI Technologies Inc., 6.14.10.4178, C:2007-09-28 22:56 M:2007-09-28 22:56] [Contrl Center of Storm Media / ccosm][Running/Auto Start] [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:2007-11-12 11:47 M:2008-03-11 14:33] [Nero BackItUp Scheduler 3 / Nero BackItUp Scheduler 3][Running/Auto Start] [(Verified)Nero AG, 3, 5, 1, 0, C:2008-02-18 16:29 M:2008-02-18 16:29] [NMIndexingService / NMIndexingService][Running/Manual Start] <"C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe"> [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] ======================================== 驱动 [awecho / awecho][Running/System Start] [Symantec Corporation, 12.0, C:2004-03-05 12:52 M:2004-03-05 12:52] [awlegacy / awlegacy][Running/System Start] <\SystemRoot\System32\Drivers\awlegacy.sys> [Symantec Corporation, 11.0.1.764, C:2003-11-17 18:06 M:2003-11-17 18:06] [AW_HOST / AW_HOST][Running/System Start] [Symantec Corporation, 11.0.1.761, C:2003-10-23 10:32 M:2003-10-23 10:32] [fishwowsafe / fishwowsafe][Stopped/Manual Start] <\??\C:\WINDOWS\system32\wowsafe.sys> [Power By HellFish@QQ.com, 2, 0, 2, 0, C:2008-04-11 20:40 M:2008-04-11 20:40] [KBaseZS / KBaseZS][Running/Disabled] <\??\C:\Documents and Settings\Administrator\桌面\杀毒工具软件\DubaTool_AV_Killer\KBaseZS.sys> [] [Klif / Klif][Running/System Start] <\??\C:\WINDOWS\system32\Drivers\klif.sys> [Kaspersky Labs, 6.12.10.150, C:2005-09-14 09:26 M:2005-09-14 09:26] [Klmc / Klmc][Running/Boot Start] [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] [sscfs / sscfs][Running/Boot Start] [StarSoftComm Corporation, 2.5, C:2008-01-21 12:37 M:2008-01-21 12:37] [sscmon / sscmon][Running/Auto Start] [StarSoftComm Corporation, 2.5, C:2008-01-21 12:37 M:2008-01-21 12:37] [ssfltpt / ssfltpt][Running/Boot Start] [StarSoftComm Corporation, 2.5, C:2008-01-21 12:37 M:2008-01-21 12:37] [stwlfbus / stwlfbus][Running/Boot Start] [ , 3.33.0.0, C:2003-04-27 12:39 M:2003-04-27 12:39] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 13:00 M:2008-06-20 16:45] [360AntiArp / 360AntiArp][Running/System Start] <\??\C:\WINDOWS\system32\drivers\360AntiArp.sys> [(Verified)360安全中心, 1, 0, 1, 1007, C:2008-04-09 13:33 M:2008-04-09 13:33] [ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter / AN983][Running/Manual Start] [(Verified)ADMtek Incorporated., 2.17.1025.2001 built by: WinDDK, C:2008-04-18 19:44 M:2004-08-03 23:31] [ati2mtag / ati2mtag][Running/Manual Start] [(Verified)ATI Technologies Inc., 6.14.10.6727, C:2007-09-28 23:06 M:2007-09-28 23:06] [Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start] [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2005-01-07 17:07 M:2005-01-07 17:07] [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.00.5324 built by: WinDDK, C:2008-01-21 12:31 M:2006-11-15 14:34] [KAVSafe / KAVSafe][Running/Auto Start] <\??\C:\WINDOWS\system32\Drivers\KAVSafe.sys> [(Verified)Kingsoft Corporation, 2008,03,04,62, C:2008-08-03 18:32 M:2008-08-03 18:32] [Nokia USB Generic / Nokia USB Generic][Stopped/Manual Start] [(Verified)Nokia, 6.80.5.0, C:2008-05-06 07:47 M:2006-05-29 08:26] [Nokia USB Modem / Nokia USB Modem][Stopped/Manual Start] [(Verified)Nokia, 6.80.5.0, C:2008-05-06 07:47 M:2006-05-29 08:26] [Nokia USB Phone Parent / Nokia USB Phone Parent][Stopped/Manual Start] [(Verified)Nokia, 6.80.5.0, C:2008-05-06 07:47 M:2006-05-29 08:26] [Nokia USB Port / Nokia USB Port][Stopped/Manual Start] [(Verified)Nokia, 6.80.5.0, C:2008-05-06 07:47 M:2006-05-29 08:26] [DDK PACKET Protocol / Packet][Running/Manual Start] [(Verified)360安全中心, 1, 0, 1, 1001, C:2008-04-09 13:36 M:2008-04-09 13:36] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-08-17 13:00 M:2004-08-17 13:00] [Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start] [(Verified)Realtek Semiconductor Corporation , 5.678.1003.2007 built by: WinDDK, C:2008-01-21 12:33 M:2007-10-03 21:31] [SafeBoxKrnl / SafeBoxKrnl][Running/System Start] <\??\C:\Program Files\360Safebox\SafeBoxKrnl.sys> [(Verified)360安全中心, 2, 2, 1, 1001, C:2008-06-06 16:31 M:2008-06-06 16:31] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-08-17 13:00 M:2007-11-13 18:25] [SymEvent / SymEvent][Stopped/Manual Start] <\??\C:\Program Files\Symantec\SYMEVENT.SYS> [(Verified)Symantec Corporation, 11.5.2.2, C:2008-04-26 11:10 M:2008-04-26 11:10] ======================================== 进程 [PID: 452 / SYSTEM] \SystemRoot\System32\smss.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 516 / SYSTEM] \??\C:\WINDOWS\system32\csrss.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 544 / SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 588 / SYSTEM] C:\WINDOWS\system32\services.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 600 / SYSTEM] C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 768 / SYSTEM] C:\WINDOWS\system32\Ati2evxx.exe [(Verified)ATI Technologies Inc., 6.14.10.4178, C:2007-09-28 22:56 M:2007-09-28 22:56] C:\WINDOWS\system32\Ati2edxx.dll [(Verified)ATI Technologies, Inc., 6, 14, 10, 2512, C:2007-09-28 22:58 M:2007-09-28 22:58] C:\WINDOWS\system32\atipdlxx.dll [(Verified)ATI Technologies, Inc., 6, 14, 10, 2524, C:2007-09-28 22:58 M:2007-09-28 22:58] [PID: 788 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 852 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 936 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 1084 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 1140 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 1284 / SYSTEM] C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519), C:2004-08-17 13:00 M:2005-06-11 08:53] C:\WINDOWS\system32\AdobePDF.dll [(Verified)Adobe Systems Incorporated., 8.0.0.00, C:2006-09-29 06:56 M:2006-09-29 06:56] D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdistRes.CHS [N/A, C:2006-11-17 00:35 M:2006-11-17 00:35] C:\WINDOWS\system32\awmon.dll [Symantec Corporation, 9.2.1, C:2001-08-15 21:10 M:2001-08-15 21:10] [PID: 1704 / SYSTEM] C:\Program Files\StormII\stormliv.exe [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:2007-11-12 11:47 M:2008-03-11 14:33] [PID: 1824 / SYSTEM] C:\WINDOWS\system32\inetsrv\inetinfo.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2008-04-11 09:03 M:2004-08-17 18:00] [PID: 1928 / SYSTEM] e:\kingfulsrv\web\MySQL5\bin\mysqld-nt.exe [N/A, C:2008-04-11 10:23 M:2006-08-26 02:14] [PID: 124 / SYSTEM] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kavmm.exe [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll [Kaspersky Lab, 6.00.0000, C:2005-03-17 10:08 M:2005-03-17 10:08] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klsecur.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsa.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsbl.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\xorio_ex.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\startups.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_server.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_client.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\l_llio.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\avp_iont.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\avp1.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\avpgs.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\cab.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\dtreg.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ichk2.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ichstrms.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\klonacci.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\wdiskio.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\klondemi.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\mailmsg.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\mdb.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\memmodsc.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\memscan.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\msoe.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\nfio.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ntfsstrm.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\report.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\sfdb.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\tempfile.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\winreg.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\AVS.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\CheckTool.DLL [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\xmlparse.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\xmltok.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsbloc.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-30 12:01 M:2005-09-30 12:01] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\OnDemand.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\QBackup.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\qbstorage.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsblp.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\OnAccess.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scrch_ag.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mcproxy.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mcpr.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mailapplayer.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\mchk.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\SubjPlugin.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] [PID: 220 / SYSTEM] C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe [Kaspersky Lab, 5.0.0474.0, C:2005-09-28 17:35 M:2005-09-28 17:35] C:\Program Files\Kaspersky Lab\NetworkAgent\klstfix.dll [Kaspersky Lab, 5.0.0474.0, C:2005-09-28 17:35 M:2005-09-28 17:35] C:\Program Files\Kaspersky Lab\NetworkAgent\klcsn.dll [Kaspersky Lab, 5.0.0474.0, C:2005-09-28 17:35 M:2005-09-28 17:35] C:\Program Files\Kaspersky Lab\NetworkAgent\kltrace.dll [Kaspersky Lab, 5.0.0474.0, C:2005-09-28 17:35 M:2005-09-28 17:35] C:\Program Files\Kaspersky Lab\NetworkAgent\FSSync.dll [Kaspersky Lab, 5.0.0474.0, C:2005-09-28 17:35 M:2005-09-28 17:35] C:\Program Files\Kaspersky Lab\NetworkAgent\klsecur2.dll [Kaspersky Lab, 5.0.0474.0, C:2005-09-28 17:35 M:2005-09-28 17:35] [PID: 484 / SYSTEM] D:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [(Verified)Nero AG, 3, 5, 1, 0, C:2008-02-18 16:29 M:2008-02-18 16:29] D:\Program Files\Nero\Nero8\Nero BackItUp\NB.dll [(Verified)Nero AG, 3, 5, 1, 0, C:2008-02-18 16:28 M:2008-02-18 16:28] D:\Program Files\Nero\Nero8\Nero BackItUp\NeroAPIGlueLayerUnicode.dll [(Verified)Nero AG, 8.3.3.1, C:2008-02-28 13:25 M:2008-02-28 13:25] D:\Program Files\Nero\Nero8\Nero BackItUp\LBFC.dll [(Verified)Nero AG, 3, 5, 1, 0, C:2008-02-18 16:28 M:2008-02-18 16:28] D:\Program Files\Nero\Nero8\Nero BackItUp\NBHDMgr.dll [(Verified)Nero AG, 3, 5, 1, 0, C:2008-02-18 16:29 M:2008-02-18 16:29] [PID: 1468 / Administrator] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsprod.exe [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\KCAStub.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll [Kaspersky Lab, 6.00.0000, C:2005-03-17 10:08 M:2005-03-17 10:08] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\qbstorage.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\report.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\nfio.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsploc.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-30 12:01 M:2005-09-30 12:01] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klsecur.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] [PID: 1608 / SYSTEM] C:\WINDOWS\system32\IoctlSvc.exe [Prolific Technology Inc., 1, 6, 0, 0, C:2006-12-19 09:30 M:2006-12-19 09:30] [PID: 1636 / Administrator] C:\WINDOWS\SYSTEM32\MRCARD.EXE [Upwin Corp., 3, 9, 2, 4, C:2008-04-09 11:49 M:2007-02-08 14:27] C:\WINDOWS\SYSTEM32\CSKeyI.dll [CopSec, 3, 0, 0, 1, C:2008-04-09 11:49 M:2007-01-06 10:26] C:\WINDOWS\SYSTEM32\zlib1.dll [(C) 1995-2003 Jean-loup Gailly & Mark Adler, 1.2.1, C:2008-04-09 11:49 M:2003-11-18 01:29] [PID: 3236 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 3424 / SYSTEM] C:\WINDOWS\system32\tlntsvr.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 3428 / Administrator] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] [PID: 3612 / LOCAL SERVICE] C:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 13:00 M:2004-08-17 13:00] [PID: 3412 / Administrator] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQ.exe [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:40 M:2008-05-14 17:40] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQBaseClassInDll.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-15 06:20 M:2008-05-15 06:20] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQHelperDll.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:42 M:2008-05-14 17:42] \\192.168.1.35\c$\Program Files\Tencent\QQ\BasicCtrlDll.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:46 M:2008-05-14 17:46] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQAPI.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:40 M:2008-05-14 17:40] \\192.168.1.35\c$\Program Files\Tencent\QQ\LoginCtrl.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:39 M:2008-05-14 17:39] \\192.168.1.35\c$\Program Files\Tencent\QQ\LoginCtrlRes.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:39 M:2008-05-14 17:39] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQRes.dll [(Verified)TENCENT, 8,0,776,1805, C:2008-05-15 07:23 M:2008-05-15 07:23] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQMainFrame.dll [(Verified)N/A, C:2008-05-14 17:43 M:2008-05-14 17:43] \\192.168.1.35\c$\Program Files\Tencent\QQ\UnReadMsgMgr.dll [(Verified)N/A, C:2008-05-14 17:45 M:2008-05-14 17:45] \\192.168.1.35\c$\Program Files\Tencent\QQ\CQQApplication.dll [(Verified)N/A, C:2008-05-14 17:38 M:2008-05-14 17:38] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQPlugin.dll [(Verified)N/A, C:2008-05-14 17:43 M:2008-05-14 17:43] \\192.168.1.35\c$\Program Files\Tencent\QQ\FlashAvatarDll.dll [(Verified)版权所有 (C) 2005, 1, 4, 0, 1, C:2008-05-14 17:39 M:2008-05-14 17:39] \\192.168.1.35\c$\Program Files\Tencent\QQ\NewSkin.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:39 M:2008-05-14 17:39] \\192.168.1.35\c$\Program Files\Tencent\QQ\MailSummary.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:39 M:2008-05-14 17:39] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQSpace.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:44 M:2008-05-14 17:44] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2004-08-17 13:00 M:2004-08-17 13:00] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQKnowledgeSearch.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:43 M:2008-05-14 17:43] \\192.168.1.35\c$\Program Files\Tencent\QQ\OEMApplication.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:40 M:2008-05-14 17:40] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQGroupMng.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:42 M:2008-05-14 17:42] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQPet.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:43 M:2008-05-14 17:43] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQAllInOne.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:40 M:2008-05-14 17:40] \\192.168.1.35\c$\Program Files\Tencent\QQ\SCCore.dll [(Verified)TENCENT, 1, 6, 0, 2, C:2008-05-14 17:44 M:2008-05-14 17:44] \\192.168.1.35\c$\Program Files\Tencent\QQ\CameraDll.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:46 M:2008-05-14 17:46] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQSysMsgMng.dll [(Verified)N/A, C:2008-05-14 17:44 M:2008-05-14 17:44] \\192.168.1.35\c$\Program Files\Tencent\QQ\UserDefinedHead.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:45 M:2008-05-14 17:45] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQConfigPlugin.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:42 M:2008-05-14 17:42] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQCustomFace.dll [(Verified)N/A, C:2008-05-14 17:42 M:2008-05-14 17:42] \\192.168.1.35\c$\Program Files\Tencent\QQ\QRingMng.dll [(Verified)N/A, C:2008-05-14 17:44 M:2008-05-14 17:44] \\192.168.1.35\c$\Program Files\Tencent\QQ\LongConnection.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:47 M:2008-05-14 17:47] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQAvatar.dll [(Verified)N/A, C:2008-05-14 17:41 M:2008-05-14 17:41] \\192.168.1.35\c$\Program Files\Tencent\QQ\PhoneAPI.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:40 M:2008-05-14 17:40] \\192.168.1.35\c$\Program Files\Tencent\QQ\DialerAllinOne.dll [(Verified)tencent, 1, 4, 0, 0, C:2008-05-14 17:39 M:2008-05-14 17:39] \\192.168.1.35\c$\Program Files\Tencent\QQ\BQQApplication.dll [(Verified)N/A, C:2008-05-14 17:38 M:2008-05-14 17:38] \\192.168.1.35\c$\Program Files\Tencent\QQ\CommercesMng.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:38 M:2008-05-14 17:38] \\192.168.1.35\c$\Program Files\Tencent\QQ\PersonalDesktop.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:47 M:2008-05-14 17:47] \\192.168.1.35\c$\Program Files\Tencent\QQ\ImageOle.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:46 M:2008-05-14 17:46] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQLiveQMng.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:43 M:2008-05-14 17:43] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQMagicFace.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:43 M:2008-05-14 17:43] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQSceneMng.dll [(Verified)N/A, C:2008-05-14 17:43 M:2008-05-14 17:43] \\192.168.1.35\c$\Program Files\Tencent\QQ\QQAddr.dll [(Verified)深圳市腾讯计算机系统有限公司, 5, 0, 101, 330, C:2008-05-14 17:52 M:2008-05-14 17:52] C:\WINDOWS\system32\GOOGLEPINYIN.IME [Google Inc., C:2008-01-07 15:14 M:2008-01-07 15:14] \\192.168.1.35\c$\Program Files\Tencent\QQ\AddrSearch.dll [(Verified)腾讯科技(深圳)有限公司, 2, 2, 1, 15, C:2008-05-14 17:38 M:2008-05-16 22:49] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scr_ch_pg.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scrch_ag.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll [Kaspersky Lab, 6.00.0000, C:2005-03-17 10:08 M:2005-03-17 10:08] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_server.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\tempfile.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] \\192.168.1.35\c$\Program Files\Tencent\QQ\GroupConnection.dll [(Verified)TENCENT, 8,0,777,1805, C:2008-05-14 17:46 M:2008-05-14 17:46] [PID: 1368 / Administrator] C:\Program Files\Tencent\QQ\TXPlatform.exe [(Verified)Tencent, 1, 0, 170, 0, C:2008-01-04 14:10 M:2008-01-04 14:10] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] [PID: 2116 / Administrator] \\192.168.1.35\c$\Program Files\360safe\AntiArp\AntiArp.exe [(Verified)360安全中心, 2, 0, 0, 1008, C:2008-04-11 17:45 M:2008-04-11 17:45] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] [PID: 5248 / Administrator] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\NMSQLDB.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:08 M:2008-02-28 17:08] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\log4cxx.dll [(Verified)Nero AG, 1, 0, 1, 0, C:2008-02-28 17:06 M:2008-02-28 17:06] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvrPS.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\NMCoFoundation.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\NMPluginBase.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:08 M:2008-02-28 17:08] C:\Program Files\Common Files\Nero\Lib\NMFullTextExtraction.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\NMSearchPluginSimilarImages.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:08 M:2008-02-28 17:08] C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] [PID: 5708 / SYSTEM] C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] C:\Program Files\Common Files\Nero\Lib\log4cxx.dll [(Verified)Nero AG, 1, 0, 1, 0, C:2008-02-28 17:06 M:2008-02-28 17:06] C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll [(Verified)Nero AG, 3.3.3.0, C:2008-02-28 17:07 M:2008-02-28 17:07] [PID: 4052 / Administrator] C:\WINDOWS\explorer.exe [(Verified)Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234), C:2004-08-17 13:00 M:2007-06-13 19:21] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll [(Verified)Nero AG, 3, 1, 0, 11, C:2008-03-05 11:41 M:2008-03-05 11:41] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL [Microsoft Corporation, 8.00.50727.762, C:2006-12-02 00:25 M:2006-12-02 00:25] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL [Microsoft Corporation, 8.00.50727.762, C:2006-12-02 00:08 M:2006-12-02 00:08] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll [Adobe Systems, Inc., 8.0.0.0, C:2006-10-22 23:28 M:2006-10-22 23:28] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS [Adobe Systems, Inc., 8.0.0.0, C:2006-11-17 00:37 M:2006-11-17 00:37] D:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.chs [Adobe Systems Inc., 8.0.5.2006102200\0, C:2006-11-17 00:34 M:2006-11-17 00:34] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [Copyright 2004, 2, 0, 0, 0, C:2007-03-02 11:44 M:2007-03-02 11:44] C:\Program Files\Tencent\QQ\qdshm.dll [(Verified)Copyright 2004, 1, 0, 101, 20, C:2007-11-19 13:43 M:2007-11-19 13:43] D:\Program Files\Nero\Nero8\Nero BackItUp\NBShell.dll [(Verified)Nero AG, 3, 5, 1, 0, C:2008-02-18 16:29 M:2008-02-18 16:29] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL [Microsoft Corporation, 8.00.50727.762, C:2006-12-02 00:25 M:2006-12-02 00:25] C:\Program Files\WinRAR\rarext.dll [N/A, C:2008-04-09 09:50 M:2004-12-27 09:18] C:\WINDOWS\system32\MrContMenu.dll [北京梦龙科技有限公司, 1.0.0.6, C:2008-04-09 11:49 M:2006-09-15 14:58] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\ShellEx.dll [Kaspersky Lab, 5.0.200.0, C:2005-05-31 14:55 M:2005-05-31 14:55] D:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.dll [(Verified)Adobe Systems Inc., 8.0.5.2006102200\0, C:2006-10-22 23:44 M:2006-10-22 23:44] C:\MxDownload\FileForceKiller\FileForceKiller\FileForceKiller\FileForceKiller.dll [DSW Lab, 1.0.0.7, C:2008-08-03 20:29 M:2008-03-31 19:27] C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll [Nokia, 6, 81, 46, 1, C:2006-06-12 09:08 M:2006-06-12 09:08] C:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll [Nokia, 6, 81, 68, 0, C:2006-06-01 10:51 M:2006-06-01 10:51] C:\WINDOWS\system32\ConnAPI.DLL [Nokia., 6, 81, 62, 0, C:2006-06-05 15:04 M:2006-06-05 15:04] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-01-21 12:36 M:2006-07-13 12:04] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-01-21 12:36 M:2006-07-13 12:04] C:\Program Files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_chi-sc.nlr [Nokia, 6, 81, 29, 0, C:2006-06-08 13:36 M:2006-06-08 13:36] C:\Program Files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr [Nokia, 6, 81, 11, 0, C:2006-06-01 11:00 M:2006-06-01 11:00] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [(Verified)Adobe Systems Incorporated, 8.0.0.2006102200, C:2006-10-22 23:08 M:2006-10-22 23:08] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scr_ch_pg.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scrch_ag.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll [Kaspersky Lab, 6.00.0000, C:2005-03-17 10:08 M:2005-03-17 10:08] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_server.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\tempfile.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] D:\Program Files\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll [(Verified)Nero AG, 3, 3, 1, 1, C:2008-02-28 09:53 M:2008-02-28 09:53] C:\WINDOWS\system32\GOOGLEPINYIN.IME [Google Inc., C:2008-01-07 15:14 M:2008-01-07 15:14] [PID: 2392 / SYSTEM] C:\WINDOWS\system32\wuauclt.exe [(Verified)Microsoft Corporation, 5.4.3790.2180 (xpsp_sp2_rtm.040803-2158), C:2008-01-21 12:16 M:2004-08-17 21:00] [PID: 2732 / SYSTEM] C:\WINDOWS\system32\wuauclt.exe [(Verified)Microsoft Corporation, 5.4.3790.2180 (xpsp_sp2_rtm.040803-2158), C:2008-01-21 12:16 M:2004-08-17 21:00] [PID: 4656 / Administrator] D:\Program Files\Morrowsoft\MRICU\MRICU.exe [北京梦龙科技有限公司, 3.7.0.10, C:2008-04-09 11:49 M:2007-02-02 11:21] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] D:\PROGRA~1\MORROW~1\MRICU\Data\MEDIAC~1.DLL [版权所有 (C) 2003, 1, 0, 0, 15, C:2008-04-09 11:49 M:2005-07-08 11:32] C:\WINDOWS\system32\midas.dll [Borland Software Corporation, 7.1.1692.666, C:2004-04-23 10:01 M:2004-04-23 10:01] C:\WINDOWS\system32\GOOGLEPINYIN.IME [Google Inc., C:2008-01-07 15:14 M:2008-01-07 15:14] [PID: 7008 / Administrator] D:\Program Files\TTPlayer\TTPlayer.exe [Alen Soft, 5, 1, 0, 0, C:2007-12-19 13:53 M:2007-12-19 13:53] D:\Program Files\TTPlayer\ttpcomm.dll [N/A, C:2007-12-19 13:58 M:2007-12-19 13:58] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] D:\Program Files\TTPlayer\ttpres.dll [Alen Soft, 5, 1, 0, 0, C:2007-12-19 13:44 M:2007-12-19 13:44] D:\Program Files\TTPlayer\msdmo.dll [Microsoft Corporation, 6.03.01.0400, C:2006-04-13 12:54 M:2006-04-13 12:54] D:\Program Files\TTPlayer\AddIn\ttp_lrcsh.dll [N/A, C:2007-12-19 14:05 M:2007-12-19 14:05] D:\Program Files\TTPlayer\AddIn\ttp_asf.dll [N/A, C:2007-12-19 14:04 M:2007-12-19 14:04] D:\Program Files\TTPlayer\AddIn\ttp_aac.dll [N/A, C:2007-12-19 14:04 M:2007-12-19 14:04] D:\Program Files\TTPlayer\AddIn\ttp_ac3dts.dll [N/A, C:2007-12-19 14:04 M:2007-12-19 14:04] [PID: 7840 / Administrator] e:\program files\warcraft iii\war3.exe [Blizzard Entertainment, 1, 21, 1, 6300, C:2006-06-23 09:02 M:2007-07-20 03:41] e:\program files\warcraft iii\Storm.dll [Blizzard Entertainment, 1.09, C:2006-06-23 09:02 M:2008-07-25 17:59] e:\program files\warcraft iii\mss32.dll [N/A, C:2006-06-23 09:02 M:2003-06-21 22:07] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] e:\program files\warcraft iii\Game.dll [Blizzard Entertainment, 1, 21, 1, 6300, C:2006-06-23 09:02 M:2007-07-20 03:50] e:\program files\warcraft iii\ijl15.dll [Intel Corporation, 1,5,4,36, C:2006-06-23 09:02 M:2003-06-21 22:07] e:\program files\warcraft iii\redist\miles\Mp3dec.asi [N/A, C:2008-07-25 19:14 M:2008-07-25 18:10] e:\program files\warcraft iii\redist\miles\Mssdolby.m3d [N/A, C:2008-07-25 19:14 M:2008-07-25 18:10] e:\program files\warcraft iii\redist\miles\Msseax2.m3d [N/A, C:2008-07-25 19:14 M:2008-07-25 18:10] e:\program files\warcraft iii\redist\miles\Mssfast.m3d [N/A, C:2008-07-25 19:14 M:2008-07-25 18:10] e:\program files\warcraft iii\redist\miles\Reverb3.flt [N/A, C:2008-07-25 19:14 M:2008-07-25 18:10] [PID: 9992 / Administrator] C:\Program Files\Maxthon2\Maxthon.exe [(Verified)Maxthon International ltd., 2, 1, 2, 649, C:2008-06-30 14:29 M:2008-06-30 14:29] C:\Program Files\Maxthon2\mxpp.dll [(Verified)Maxthon International ltd., 1, 0, 0, 117, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Maxthon2\MxSk.dll [(Verified)Maxthon, 1, 0, 0, 358, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Maxthon2\MxProxy2.dll [(Verified)Maxthon International ltd., 1, 0, 0, 4033, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Maxthon2\MxExt.dll [(Verified)N/A, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Maxthon2\MxUI.dll [Maxthon International, 3, 3, 0, 3, C:2008-06-12 14:42 M:2008-06-12 14:42] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] C:\Program Files\Maxthon2\mxtool.dll [(Verified)Copyright 2005, 1, 0, 0, 1, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Maxthon2\maxzlib.dll [(Verified)(C) 1995-2004 Jean-loup Gailly & Mark Adler, 1.2.3, C:2008-06-30 14:26 M:2008-06-30 14:26] C:\Program Files\Maxthon2\Modules\MxPageSearch\MxPageSearch.dll [(Verified)Maxthon International ltd., 1,0,0,1330, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Maxthon2\Modules\MxWebBoost\MxWebBoost.dll [(Verified)Maxthon, 1,0,2,1259, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Maxthon2\mxdb.dll [(Verified)Max, 3, 5, 3, 125, C:2008-06-30 14:26 M:2008-06-30 14:26] C:\Program Files\Maxthon2\Modules\MxHistory\MxHistory.dll [(Verified)Maxthon International ltd., 1, 0, 0, 7, C:2008-06-30 14:27 M:2008-06-30 14:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scr_ch_pg.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scrch_ag.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll [Kaspersky Lab, 6.00.0000, C:2005-03-17 10:08 M:2005-03-17 10:08] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_server.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:26 M:2005-09-14 09:26] c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\tempfile.ppl [Kaspersky Lab, 5.0.225.0, C:2005-09-14 09:27 M:2005-09-14 09:27] C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 07:32 M:2008-03-25 07:32] [PID: 504 / Administrator] C:\Program Files\arswp\ArSwp.exe [(Verified)ArSwp.com, 2, 8, 0, 728, C:2008-07-29 22:36 M:2008-07-29 22:36] \\192.168.1.35\c$\Program Files\360safe\safemon\safemon.dll [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 15:42] C:\Program Files\arswp\plugin\ArFix.dll [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2007-11-28 14:19 M:2007-11-28 14:19] ======================================== 文件关联 ======================================== AutoRun.INF ======================================== Winsock提供者 ======================================== HOSTS 127.0.0.1 localhost [/CODE]