[CODE]

2009-03-16,12:36:22

SysLog Scanner 1.0 - build 20080726
Arswp (http://www.arswp.com)

Windows XP Professional Service Pack 2 (build 2600) - Administrators



========================================
注册项

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <switch><c:\windows\system32\壁纸自动换.exe>  [N/A, C:2007-02-01 16:35 M:2004-02-22 16:01]
    <SoundMan><SOUNDMAN.EXE>  [(Verified)Realtek Semiconductor Corp., 5, 1, 0, 59, C:1980-01-01 00:00 M:2007-04-16 15:28]
    <360Safebox><"C:\Program Files\360Safebox\safeboxTray.exe" /r>  [(Verified)360安全中心, 2, 5, 1, 1005, C:2009-02-06 11:53 M:2009-02-06 11:53]
    <360Safetray><C:\Program Files\360safe\safemon\360tray.exe /start>  [(Verified)360安全中心, 5, 0, 0, 1012, C:2009-02-11 16:33 M:2009-02-11 16:33]
    <Supplicant><c:\program files\锐捷网络\ruijie supplicant\8021x.exe>  [锐捷网络, 3, 35, 0, 0, C:2004-01-01 00:56 M:2008-06-18 10:39]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&使用超级旋风下载]
    <><D:\Program Files\QQDownload\geturl.htm>  [N/A, C:2008-08-27 17:09 M:2008-11-21 15:47]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&使用超级旋风下载全部链接]
    <><D:\Program Files\QQDownload\getAllurl.htm>  [N/A, C:2007-01-16 17:34 M:2008-11-21 15:47]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)Microsoft Corporation, 7.00.6000.16791 (vista_gdr.081217-1620), C:2004-08-17 12:00 M:2008-12-21 06:30|(Verified)N/A, C:1980-01-01 00:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)Microsoft Corporation, 7.00.6000.16791 (vista_gdr.081217-1620), C:2004-08-17 12:00 M:2008-12-21 06:30|(Verified)N/A, C:1980-01-01 00:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)Microsoft Corporation, 7.00.6000.16791 (vista_gdr.081217-1620), C:2004-08-17 12:00 M:2008-12-21 06:30|(Verified)N/A, C:1980-01-01 00:00 M:2006-11-02 23:38]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}]
    <启动迅雷5><C:\Program Files\Thunder Network\Thunder\Thunder.exe>  [(Verified)Thunder Networking Technologies,LTD, 5, 6, 8, 19, C:2008-11-26 15:59 M:2008-11-12 14:30]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{12341234-1234-5678-9012-123456789012}]
    <扑克><E:\开心斗地主\d3dx10.exe>  []


========================================
启动项

[QQ游戏启动加速程序]
    <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\QQ游戏启动加速程序.lnk --> "D:\qqg\QQGAME\Accel.exe"  > [(Verified)深圳市腾讯计算机系统有限公司, 2, 0, 103, 5, C:2009-01-06 15:55 M:2009-01-06 15:55]


========================================
计划任务



========================================
组件


Shell Extension
[Display Panning CPL Extension]
    {42071714-76d4-11d1-8b24-00a0c9068ff3}  <deskpan.dll>  []
[HyperTerminal Icon Ext]
    {88895560-9AA2-1069-930E-00AA0030EBC8}  <C:\WINDOWS\system32\hticons.dll>  [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2006-11-07 01:29 M:2004-08-17 20:00]
[WinRAR shell extension]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2007-02-01 13:57 M:2006-12-04 18:43]
[DllRegShlExt extension]
    {8AB81E72-CB2F-11D3-8D3B-AC2F34F1FA3C}  <C:\WINDOWS\system32\TudouUpload.dll>  [www.Tudou.com, 1.1.0.0, C:2008-11-06 10:02 M:2008-11-06 10:02]
[诺基亚手机浏览器]
    {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}  <E:\新建文件夹 (3)\Nokia PC Suite 7\PhoneBrowser.dll>  [Nokia, 7, 1, 105, 0, C:2008-09-08 08:58 M:2008-09-08 08:58]
[Eset Smart Security - Context Menu Shell Extension]
    {B089FE88-FB52-11D3-BDF1-0050DA34150D}  <C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll>  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:08 M:2008-09-05 19:08]

BrowserHelperObject
[QQCycloneHelper Class]
    {01443AEB-0FD1-40FD-9C87-E93D1494C233}  <D:\Program Files\QQDownload\QQIEHelper01.dll>  [(Verified)腾讯公司, 1, 9, 252, 252, C:2007-12-11 11:53 M:2007-12-11 11:53]
[超级兔子上网精灵]
    {7369D35A-5B70-4A5B-B789-B25FE09B4AF3}  <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll>  [Xiang Feng Technology, 3, 5, 0, 1660, C:2008-04-09 18:03 M:2008-04-09 18:03]
[SafeMon Class]
    {B69F34DD-F0F9-42DC-9EDD-957187DA688D}  <C:\Program Files\360safe\safemon\safemon.dll>  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]

ToolBar
[超级兔子上网精灵]
    {43869BB3-22FD-4F15-9B46-238106BA2F4E}  <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll>  [Xiang Feng Technology, 3, 5, 0, 1660, C:2008-04-09 18:03 M:2008-04-09 18:03]

ActiveX Extension
[QQCycloneHelper Class]
    {01443AEB-0FD1-40FD-9C87-E93D1494C233}  <D:\Program Files\QQDownload\QQIEHelper01.dll>  [(Verified)腾讯公司, 1, 9, 252, 252, C:2007-12-11 11:53 M:2007-12-11 11:53]
[ThunderAtOnce Class]
    {01443AEC-0FD1-40FD-9C87-E93D1494C233}  <C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.34, C:2008-11-26 15:59 M:2008-09-06 10:36]
[超级兔子上网精灵]
    {43869BB3-22FD-4F15-9B46-238106BA2F4E}  <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll>  [Xiang Feng Technology, 3, 5, 0, 1660, C:2008-04-09 18:03 M:2008-04-09 18:03]
[Thunder Agent Class]
    {485463B7-8FB2-4B3B-B29B-8B919B0EACCE}  <C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 6, 0, 5, 47, C:2008-11-26 15:59 M:2008-11-07 17:13]
[VaCom.Application]
    {51E88884-1306-4444-B22D-C34119E44232}  <C:\PROGRA~1\Tudou\飞速TU~1\TDVaCom.Dll>  []
[PowerPlayer Control]
    {5EC7C511-CD0F-42E6-830C-1BD9882F3458}  <D:\PPStream\110~1.264\POWERP~1.DLL>  [(Verified)PPStream Inc., 2,2,90,9009, C:2009-01-01 20:07 M:2009-01-01 20:07]
[XMP Class]
    {6483F145-A768-4C41-AACC-52D4D7845851}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>  [Xunlei Networking Technologies,LTD, 2, 1, 9, 100, C:2008-11-26 15:59 M:2008-11-12 14:29]
[超级兔子上网精灵]
    {7369D35A-5B70-4A5B-B789-B25FE09B4AF3}  <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll>  [Xiang Feng Technology, 3, 5, 0, 1660, C:2008-04-09 18:03 M:2008-04-09 18:03]
[MediaComm Class]
    {7670648D-461B-42AF-BDFE-46D26AF5EFF2}  <C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin18.dll>  [(Verified)Thunder Networking Technologies,LTD, 3, 1, 6, 81, C:2008-11-26 15:59 M:2008-11-25 11:16]
[360SafeLive]
    {87515F61-A66C-4319-A0E0-D416CB8059E3}  <C:\Program Files\360safe\live.dll>  [(Verified)360.cn, 1, 0, 1, 1030, C:2009-02-11 16:33 M:2009-02-11 16:33]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2008-11-26 15:59 M:2008-09-19 16:44]
[XML DOM 文档 5.0]
    {88D969E5-F192-11D4-A65F-0040963251E5}  <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL>  [Microsoft Corporation, 5.10.2927.0, C:2004-09-22 17:09 M:2004-09-22 17:09]
[DapCtrl Class]
    {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8}  <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.2.5807.96.(241).dll>  [(Verified)ShenZhen Thunder Networking Technologies Ltd., 2, 2, 5807, 96, C:2008-11-26 15:59 M:2008-11-03 21:47]
[SafeMon Class]
    {B69F34DD-F0F9-42DC-9EDD-957187DA688D}  <C:\Program Files\360safe\safemon\safemon.dll>  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]
[Shockwave Flash Object]
    {D27CDB6E-AE6D-11CF-96B8-444553540000}  <C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx>  [(Verified)Adobe Systems, Inc., 10,0,22,87, C:2009-02-03 10:07 M:2009-02-03 10:07]
[TimwpDll.TimwpCheck]
    {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4}  <D:\新建文~1\Timwp.dll>  [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:10 M:2007-09-17 15:10]
[XPPlayer Class]
    {F3E70CEA-956E-49CC-B444-73AFE593AD7F}  <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.5871.228.(241).dll>  [(Verified)Xunlei Networking Technologies,LTD, 2, 1, 5871, 228, C:2008-11-26 15:59 M:2008-11-07 17:17]

Context Menu
[DLLRegSvr]
    {8AB81E72-CB2F-11D3-8D3B-AC2F34F1FA3C}  <C:\WINDOWS\system32\TudouUpload.dll>  [www.Tudou.com, 1.1.0.0, C:2008-11-06 10:02 M:2008-11-06 10:02]
[Eset Smart Security - Context Menu Shell Extension]
    {B089FE88-FB52-11D3-BDF1-0050DA34150D}  <C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll>  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:08 M:2008-09-05 19:08]
[Quakecd]
    {683E1524-B938-4873-A395-7DD1C3AC3A5F}  <C:\PROGRA~1\Kingsoft\KnightV\Tools\KVD\kscdrush.dll>  [金山软件股份有限公司, 5, 0, 0, 0, C:2008-12-02 02:09 M:2003-06-20 06:04]
[QvodMenu]
    {9F44453E-1E46-4D5C-B57C-112FF2EDAE82}  <C:\Program Files\QvodPlayer\QvodBand.dll>  [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 0, C:2008-10-31 18:47 M:2008-10-31 18:47]
[WinRAR]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2007-02-01 13:57 M:2006-12-04 18:43]


========================================
服务

[Human Interface Device Access / HidServ][Stopped/Disabled]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll">  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
[Qvod Terminal / Qvod Terminal][Running/Auto Start]
    <C:\Program Files\QvodPlayer\QvodTerminal.exe>  [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 57, C:2009-03-04 10:36 M:2009-03-04 10:36]
[ServiceLayer / ServiceLayer][Stopped/Manual Start]
    <"C:\Program Files\PC Connectivity Solution\ServiceLayer.exe">  [Nokia., 7, 0, 110, 0, C:2008-11-11 09:38 M:2008-11-11 09:38]

[Contrl Center of Storm Media / ccosm][Running/Auto Start]
    <C:\Program Files\Ringz Studio\Storm Codec\stormliv.exe /asservice>  [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:2008-03-11 14:33 M:2008-03-11 14:33]
[Eset HTTP Server / EhttpSrv][Stopped/Manual Start]
    <"C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe">  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:06 M:2008-09-05 19:06]
[Eset Service / ekrn][Running/Auto Start]
    <"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe">  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:06 M:2008-09-05 19:06]


========================================
驱动

[360TimeProt / 360TimeProt][Running/Auto Start]
    <\??\C:\WINDOWS\system32\drivers\360TimeProt.sys>  [N/A, C:2004-01-01 00:09 M:2004-01-01 00:10]
[AMD K8 Processor Driver / AmdK8][Stopped/Manual Start]
    <System32\DRIVERS\amdk8.sys>  [Advanced Micro Devices, 1.1.0 (srv03_sp1_rtm.050324-1447), C:2005-08-12 09:09 M:2005-05-21 20:43]
[npkcrypt / npkcrypt][Stopped/Auto Start]
    <\??\D:\Program Files\QQ2007\npkcrypt.sys>  []
[PCANDIS5 NDIS Protocol Driver / PCANDIS5][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\PCANDIS5.SYS>  [Printing Communications Assoc., Inc. (PCAUSA), 5.03.16.54, C:2008-11-24 20:53 M:2002-05-02 12:52]
[QuakeDRV / QuakeDRV][Running/Boot Start]
    <system32\DRIVERS\quakedrv.sys>  [N/A, C:2008-12-02 02:09 M:2003-06-19 22:07]
[StarForce Protection Environment Driver (version 1.x) / sfdrv01][Running/Boot Start]
    <System32\drivers\sfdrv01.sys>  [Protection Technology, 1.32, C:2005-03-04 01:53 M:2005-03-04 01:53]
[StarForce Protection Helper Driver (version 2.x) / sfhlp02][Running/Boot Start]
    <System32\drivers\sfhlp02.sys>  [Protection Technology, 2.2, C:2005-02-23 23:59 M:2005-02-23 23:59]
[StarForce Protection Synchronization Driver (version 2.x) / sfsync02][Running/Boot Start]
    <System32\drivers\sfsync02.sys>  [Protection Technology, 2.7, C:2004-12-03 18:20 M:2004-12-03 18:20]
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
    <system32\DRIVERS\tcpip.sys>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-20 18:45]
[XDva219 / XDva219][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\XDva219.sys>  []

[360AntiArp / 360AntiArp][Running/System Start]
    <\??\C:\WINDOWS\system32\drivers\360AntiArp.sys>  [(Verified)360安全中心, 1, 0, 1, 1009, C:2008-12-25 13:33 M:2008-12-25 13:33]
[360procmon / 360procmon][Running/Manual Start]
    <\??\C:\Program Files\360safe\safemon\360procmon.sys>  [(Verified)版权所有 (C) 2006-2008 360.cn, 1, 0, 0, 1001, C:2008-09-28 00:56 M:2008-09-28 00:56]
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]
    <system32\drivers\ac97intc.sys>  [(Verified)Intel Corporation, 5.10.3523 built by: WinDDK, C:2006-11-07 01:20 M:2001-08-17 12:20]
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
    <system32\drivers\ALCXWDM.SYS>  [(Verified)Realtek Semiconductor Corp., 5.10.00.6240 built by: WinDDK, C:1980-01-01 00:00 M:2007-04-25 16:20]
[AliIde / AliIde][Running/Boot Start]
    <System32\DRIVERS\aliide.sys>  [(Verified)Acer Laboratories Inc., 1.20, C:2005-06-29 18:14 M:2005-06-16 08:58]
[CmdIde / CmdIde][Running/Boot Start]
    <System32\DRIVERS\cmdide.sys>  [(Verified)CMD Technology, Inc., 2.0.7 (XPClient.010817-1148), C:2004-04-12 20:37 M:2001-08-31 15:29]
[EAMON / eamon][Running/Auto Start]
    <system32\DRIVERS\eamon.sys>  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:03 M:2008-09-05 19:03]
[easdrv / easdrv][Running/System Start]
    <system32\DRIVERS\easdrv.sys>  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:07 M:2008-09-05 19:07]
[epfwtdir / epfwtdir][Running/System Start]
    <system32\DRIVERS\epfwtdir.sys>  [(Verified)N/A, C:2008-09-05 19:07 M:2008-09-05 19:07]
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
    <system32\DRIVERS\fetnd5.sys>  [(Verified)VIA Technologies, Inc.              , 2.66, C:2006-11-07 01:20 M:2001-08-17 12:13]
[usb Card Device / ft2kEnum][Running/Manual Start]
    <system32\DRIVERS\ic2kenum.sys>  [(Verified)OEM Corporation, 2.4.3.403, C:2008-12-13 11:13 M:2008-12-13 11:13]
[USB Chip Holder Service / GDBaseSmc][Running/Manual Start]
    <system32\DRIVERS\Chip_smc.sys>  [(Verified)OEM, 2.4.3.1110, C:2008-12-13 11:13 M:2008-12-13 11:13]
[USB Chip Service / GD_USB][Stopped/Manual Start]
    <system32\DRIVERS\Chip_usb.sys>  [(Verified)2.4.3.1110, C:2008-12-13 11:13 M:2008-12-13 11:13]
[Nokia USB Phone Parent / nmwcd][Stopped/Manual Start]
    <system32\drivers\ccdcmb.sys>  [(Verified)Nokia, 7.1.18.28, C:2004-01-01 00:06 M:2008-09-15 07:56]
[Nokia USB Generic / nmwcdc][Stopped/Manual Start]
    <system32\drivers\ccdcmbo.sys>  [(Verified)Nokia, 7.1.18.28, C:2004-01-01 00:06 M:2008-09-15 07:56]
[WinPcap Packet Driver (NPF) / NPF][Running/Manual Start]
    <system32\drivers\NPF.sys>  [(Verified)CACE Technologies, 4.0.0.1040, C:2004-01-01 00:16 M:2008-10-08 15:29]
[nv / nv][Running/Manual Start]
    <system32\DRIVERS\nv4_mini.sys>  [(Verified)NVIDIA Corporation, 6.14.10.5673, C:2006-11-07 01:20 M:2004-08-03 22:29]
[NVATABUS / NVATABUS][Running/Boot Start]
    <System32\DRIVERS\NVATABUS.SYS>  [(Verified)NVIDIA Corporation, 5.10.2600.0507 built by: WinDDK, C:2006-05-26 15:59 M:2005-04-07 14:44]
[NVIDIA nForce Networking Controller Driver / NVENET][Running/Manual Start]
    <system32\DRIVERS\NVENET.sys>  [(Verified)NVIDIA Corporation, 4.14.01.0416, C:2008-11-24 20:45 M:2005-04-07 14:44]
[NVIDIA nForce AGP Bus Filter / nv_agp][Running/Boot Start]
    <system32\DRIVERS\nv_agp.sys>  [(Verified)NVIDIA Corporation, 4.12.01.0436, C:1980-01-01 00:00 M:2005-04-07 14:44]
[DDK PACKET Protocol / Packet][Running/Manual Start]
    <system32\DRIVERS\ProtoDrv.sys>  [(Verified)360安全中心, 1, 0, 1, 1002, C:2008-09-28 01:50 M:2008-09-28 01:50]
[PCASp50 NDIS Protocol Driver / PCASp50][Running/Manual Start]
    <System32\Drivers\PCASp50.sys>  [(Verified)Printing Communications Assoc., Inc. (PCAUSA), 5.5.18.05, C:2004-01-01 00:57 M:2006-11-28 21:46]
[PCCS Mode Change Filter Driver / pccsmcfd][Stopped/Manual Start]
    <system32\DRIVERS\pccsmcfd.sys>  [(Verified)Nokia, 7.0.0.0, C:2004-01-01 00:06 M:2008-08-26 09:26]
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
    <system32\DRIVERS\ptilink.sys>  [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-08-17 12:00 M:2004-08-17 12:00]
[SmartCard Reader Device  / Reader_Device][Running/Manual Start]
    <system32\DRIVERS\usbic2k.sys>  [(Verified)OEM, 2.4.3.403, C:2008-12-13 11:13 M:2008-12-13 11:13]
[SafeBoxKrnl / SafeBoxKrnl][Running/System Start]
    <\??\C:\WINDOWS\system32\drivers\SafeBoxKrnl.sys>  [(Verified)360安全中心, 2, 3, 0, 1008, C:2009-02-05 20:48 M:2009-02-05 20:48]
[Secdrv / Secdrv][Stopped/Manual Start]
    <system32\DRIVERS\secdrv.sys>  [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-08-17 12:00 M:2007-11-13 18:25]
[upperdev / upperdev][Stopped/Manual Start]
    <system32\DRIVERS\usbser_lowerflt.sys>  [(Verified)Windows (R) Codename Longhorn DDK provider, 6.0.6001.18000 built by: WinDDK, C:2004-01-01 00:06 M:2008-09-15 07:56]
[UsbserFilt / UsbserFilt][Stopped/Manual Start]
    <system32\DRIVERS\usbser_lowerfltj.sys>  [(Verified)Windows (R) Codename Longhorn DDK provider, 6.0.6001.18000 built by: WinDDK, C:2004-01-01 00:06 M:2008-09-15 07:56]


========================================
进程

[PID: 400 / SYSTEM]   \SystemRoot\System32\smss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 668 / SYSTEM]   \??\C:\WINDOWS\system32\csrss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 692 / SYSTEM]   \??\C:\WINDOWS\system32\winlogon.exe   [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2006-09-24 16:42]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 736 / SYSTEM]   C:\WINDOWS\system32\services.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 748 / SYSTEM]   C:\WINDOWS\system32\lsass.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 892 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 980 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1068 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1104 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1172 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1288 / LOCAL SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1528 / Administrator]   C:\WINDOWS\Explorer.EXE   [(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    E:\新建文件夹 (3)\Nokia PC Suite 7\PhoneBrowser.dll  [Nokia, 7, 1, 105, 0, C:2008-09-08 08:58 M:2008-09-08 08:58]
    E:\新建文件夹 (3)\Nokia PC Suite 7\NGSCM.DLL  [Nokia, 7, 1, 151, 0, C:2008-11-11 07:31 M:2008-11-11 07:31]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    E:\新建文件夹 (3)\Nokia PC Suite 7\Lang\PhoneBrowser_chi-sc.nlr  [Nokia, 7, 1, 66, 0, C:2008-10-24 06:58 M:2008-10-24 06:58]
    E:\新建文件夹 (3)\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr  [Nokia, 7, 1, 21, 0, C:2008-08-25 07:23 M:2008-08-25 07:23]
    C:\Program Files\360safe\safemon\safemon.dll  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]
    C:\Program Files\WinRAR\rarext.dll  [N/A, C:2007-02-01 13:57 M:2006-12-04 18:43]
    C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:08 M:2008-09-05 19:08]
    C:\WINDOWS\system32\browselc.dll  [Microsoft Corporation, 6.00.2600.0000, C:1980-01-01 00:00 M:2001-09-29 14:39]

[PID: 1592 / SYSTEM]   C:\WINDOWS\system32\spoolsv.exe   [(Verified)Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519), C:2004-08-17 12:00 M:2005-06-11 07:53]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1704 / LOCAL SERVICE]   C:\WINDOWS\System32\SCardSvr.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1772 / Administrator]   C:\WINDOWS\SOUNDMAN.EXE   [(Verified)Realtek Semiconductor Corp., 5, 1, 0, 59, C:1980-01-01 00:00 M:2007-04-16 15:28]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1848 / Administrator]   C:\program files\锐捷网络\ruijie supplicant\8021x.exe   [锐捷网络, 3, 35, 0, 0, C:2004-01-01 00:56 M:2008-06-18 10:39]
    C:\program files\锐捷网络\ruijie supplicant\W32N55.dll  [(Verified)Printing Communications Assoc., Inc. (PCAUSA), 5.5.18.05, C:2004-01-01 00:57 M:2006-11-30 00:02]
    C:\program files\锐捷网络\ruijie supplicant\ArpGuard.dll  [锐捷网络, 1, 2, 0, 2, C:2004-01-01 00:57 M:2008-01-11 14:34]
    C:\program files\锐捷网络\ruijie supplicant\Vz_API.dll  [锐捷网络, 1, 2, 0, 2, C:2004-01-01 00:57 M:2007-12-25 14:33]
    C:\program files\锐捷网络\ruijie supplicant\Vd_API.dll  [锐捷网络, 1, 1, 0, 1, C:2004-01-01 00:57 M:2008-01-11 14:36]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\PROGRA~1\锐捷网络\RUIJIE~1\EXRGPA~1.OCX  [锐捷网络, 1, 2, 1, 2, C:2004-01-01 00:57 M:2008-01-11 14:35]
    C:\PROGRA~1\锐捷网络\RUIJIE~1\HIDetect.dll  [锐捷网络, 1, 4, 0, 1, C:2004-01-01 00:57 M:2008-06-18 17:14]
    C:\PROGRA~1\锐捷网络\RUIJIE~1\Vy_API.dll  [锐捷网络, 1, 2, 0, 1, C:2004-01-01 00:57 M:2008-01-11 14:37]
    C:\PROGRA~1\锐捷网络\RUIJIE~1\WuClientAPI.dll  [锐捷网络, 1.2.0.2, C:2004-01-01 00:57 M:2008-06-18 10:30]
    C:\PROGRA~1\锐捷网络\RUIJIE~1\Vx_API.dll  [锐捷网络, 1, 1, 0, 2, C:2004-01-01 00:57 M:2008-01-11 14:36]
    C:\PROGRA~1\锐捷网络\RUIJIE~1\VirusDefenderCheck.dll  [版权所有 (C) 2007, 1, 2, 0, 1, C:2004-01-01 00:57 M:2008-06-18 10:35]
    C:\program files\锐捷网络\ruijie supplicant\GetKVInfo.dll  [Jiangmin Co., Ltd., 1, 0, 7, 806, C:2004-01-01 00:57 M:2007-12-14 09:40]
    C:\Program Files\360safe\safemon\safemon.dll  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]

[PID: 1856 / Administrator]   C:\WINDOWS\system32\ctfmon.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 188 / SYSTEM]   C:\Program Files\Ringz Studio\Storm Codec\stormliv.exe   [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:2008-03-11 14:33 M:2008-03-11 14:33]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 220 / SYSTEM]   C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe   [(Verified)ESET, 3.0.669 , C:2008-09-05 19:06 M:2008-09-05 19:06]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnScan.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:05 M:2008-09-05 19:05]
    C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnAmon.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:08 M:2008-09-05 19:08]
    C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEmon.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:10 M:2008-09-05 19:10]
    C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEpfw.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:11 M:2008-09-05 19:11]
    C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnUpdate.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:03 M:2008-09-05 19:03]
    C:\Program Files\ESET\ESET NOD32 Antivirus\updater.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:05 M:2008-09-05 19:05]
    C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnMailPlugins.dll  [(Verified)ESET, 3.0.669 , C:2008-09-05 19:04 M:2008-09-05 19:04]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 320 / SYSTEM]   C:\Program Files\QvodPlayer\QvodTerminal.exe   [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 57, C:2009-03-04 10:36 M:2009-03-04 10:36]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 512 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 2204 / LOCAL SERVICE]   C:\WINDOWS\System32\alg.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 2820 / Administrator]   C:\WINDOWS\system32\conime.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\Program Files\360safe\safemon\safemon.dll  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]

[PID: 3700 / Administrator]   C:\Program Files\HappyDialer\HappyDialer.exe   [版权所有 (C) 2008, 1, 0, 0, 1, C:2004-01-01 00:16 M:2008-12-23 18:08]
    C:\Program Files\HappyDialer\MFC42.DLL  [Microsoft Corporation, 6.00.8665.0, C:2004-01-01 00:16 M:2008-10-09 17:18]
    C:\Program Files\HappyDialer\8021.dll  [版权所有 (C) 2008, 1, 0, 0, 1, C:2004-01-01 00:16 M:2008-10-08 15:29]
    C:\WINDOWS\system32\wpcap.dll  [(Verified)CACE Technologies, 4.0.0.1040, C:2004-01-01 00:16 M:2008-10-08 15:29]
    C:\WINDOWS\system32\packet.dll  [(Verified)CACE Technologies, 4.0.0.1040, C:2004-01-01 00:16 M:2008-10-08 15:29]
    C:\WINDOWS\system32\WanPacket.dll  [(Verified)CACE Technologies, 4.0.0.1040, C:2004-01-01 00:16 M:2008-10-08 15:29]
    C:\Program Files\HappyDialer\NPPTools.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-01-01 00:16 M:2008-10-08 15:29]
    C:\Program Files\HappyDialer\L2TP.dll  [gdcn, 1, 0, 0, 1, C:2004-01-01 00:16 M:2008-12-23 18:07]
    C:\Program Files\HappyDialer\PPpoE.dll  [版权所有 (C) 2008, 1, 0, 0, 1, C:2004-01-01 00:16 M:2008-10-09 10:29]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\Program Files\360safe\safemon\safemon.dll  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]
    C:\Program Files\HappyDialer\CheckShareDef.dll  [版权所有 (C) 2008, 1, 0, 0, 1, C:2004-01-01 00:16 M:2008-10-08 15:29]

[PID: 2508 / Administrator]   D:\Program Files\TT\bin\TTraveler.exe   [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTUtilWidget.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\Program Files\360safe\safemon\safemon.dll  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]
    D:\Program Files\TT\bin\TTStore.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\PlatformWidget.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTMainFrame.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\UpdateUtil.dll  [(Verified)N/A, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTMBrowser.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTabMgr.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTSkin.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTPluginMng.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\FavoriteLogical.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TSupport.dll  [(Verified)TENCENT Inc., 1, 2, 11, 201, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTHtmlApp.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    D:\Program Files\TT\bin\TTFilter.dll  [(Verified)Tencent, 4, 8, 10, 17, C:2008-09-08 17:00 M:2008-09-08 17:00]
    C:\WINDOWS\system32\QQPINYIN.IME  [(Verified)Tencent, 1.5.323.201, C:2007-11-24 09:19 M:2007-11-24 09:19]
    C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx  [(Verified)Adobe Systems, Inc., 10,0,22,87, C:2009-02-03 10:07 M:2009-02-03 10:07]

[PID: 2840 / Administrator]   D:\arswp2\ArSwp.exe   [(Verified)ArSwp.com, 2, 8, 2, 1115, C:2008-11-15 11:58 M:2008-11-15 11:58]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\Program Files\360safe\safemon\safemon.dll  [(Verified)360.CN, 5, 0, 0, 1007, C:2008-12-10 01:14 M:2009-02-13 23:40]
    D:\arswp2\plugin\ArFix.dll  [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2007-11-28 15:19 M:2007-11-28 15:19]


========================================
文件关联



========================================
AutoRun.INF



========================================
Winsock提供者



========================================
HOSTS

    127.0.0.1 localhost


[/CODE]