[CODE] 2010-07-02,19:16:16 SysLog Scanner 3.1 - build 20100608 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 3 (build 2600) ================================================================ 注册项 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <360sd> <"C:\Program Files\360\360sd\360sd.exe" /autorun> [(Verified)360.cn, 1, 1, 0, 1308] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [(Verified)Realtek Semiconductor Corp., 2.1.6.2] [(Verified)Realtek Semiconductor Corp., 2.0.1.20] [(Verified)Realtek Semiconductor Corp., 1.6.0.2] [(Verified)Intel Corporation, 6.14.10.5009] [(Verified)Intel Corporation, 6.14.10.5009] [(Verified)Intel Corporation, 6.14.10.5009] <"C:\Program Files\Rainbow Technologies\iKey Components\Bin\iKeyACR.exe"> [(Verified)Rainbow Technologies, Inc., 2, 2, 0, 51] [HKEY_CURRENT_USER\Control Panel\Desktop] <> [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify] [(Verified)Intel Corporation, 6.14.10.5009] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components] <{44BBA842-CC51-11CF-AAFA-00AA00B6015B}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105) | (Verified)N/A] <{5945c046-1e7d-11d1-bc44-00c04fd912be}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105) | (Verified)N/A] <{6BF52A52-394A-11d3-B153-00C04F79FAA6}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105) | (Verified)N/A] <{89B4C1CD-B018-4511-B0A1-5476DBF70820}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | Microsoft Corporation, 1.1.4322.573] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions] <{548BF84E-9665-47f9-B635-7380F8943E90}> [N/A] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt] <使用迅雷下载> [N/A] <使用迅雷下载全部链接> [N/A] ================================================================ 启动组 [桌面天气日历] <"C:\Program Files\桌面天气\thewe.exe"> [微软中国, 1.00.0003] ================================================================ 任务计划 [SogouImeMgr.job] <"C:\PROGRA~1\SOGOUI~1\500~1.381\SGTool.exe" --appid=pinyinrepair /S> [(Verified)Sogou.com Inc., 5.0.0.3819] ================================================================ 组件 -------------------------------- Shell Extension [Display Panning CPL Extension] <{42071714-76d4-11d1-8b24-00a0c9068ff3}> [] [HyperTerminal Icon Ext] <{88895560-9AA2-1069-930E-00AA0030EBC8}> [(Verified)Hilgraeve, Inc., 5.1.2600.0] [任务栏和「开始」菜单] <{0DF44EAA-FF21-4412-828E-260A8728E7F1}> <> [] [Fusion Cache] <{1D2680C9-0E2A-469d-B787-065558BC7D43}> [Microsoft Corporation, 1.1.4322.573] [WinRAR shell extension] <{B41DB860-8EE4-11D2-9906-E49FADC173CA}> [N/A] -------------------------------- Protocols [Cor MIME Filter, CorFltr, CorFltr 1] <{1E66F26B-79EE-11D2-8710-00C04F79ED0D}> [Microsoft Corporation, 1.1.4322.573] -------------------------------- Context Menu [SD360] <{086F171D-5ED1-4ED2-B736-CFF3AD6A128E}> [(Verified)360.cn, 1, 1, 0, 1080] [WinRAR] <{B41DB860-8EE4-11D2-9906-E49FADC173CA}> [N/A] [igfxcui] <{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4}> [(Verified)Intel Corporation, 6.14.10.5009] -------------------------------- ActiveX Extension [ThunderAtOnce Class] <{01443AEC-0FD1-40FD-9C87-E93D1494C233}> [(Verified)深圳市迅雷网络技术有限公司, 5,9,17,1334] [InstallHelper Class] <{1DABF8D5-8430-4985-9B7F-A30E53D709B3}> [(Verified)Tencent, 8.13.4822.0] [DetectAddin Class] <{2D90D33C-DE76-42D0-9040-E4466DDC24AC}> [(Verified)Xunlei, 1, 0, 1, 29] [MiguMusic] <{468C8F9D-67F2-48A6-88C1-B9015937E74B}> [MiguMusicSearch, 1.0.0.1] [Thunder Agent Class] <{485463B7-8FB2-4B3B-B29B-8B919B0EACCE}> [(Verified)深圳市迅雷网络技术有限公司, 5,9,17,1334] [QQPYChecker Class] <{5052B4D0-9DF7-45ef-88EF-F42C0EA33A43}> [] [Thunder Browser Helper] <{889D2FEB-5411-4565-8998-1DD2C5261283}> [(Verified)深圳市迅雷网络技术有限公司, 5,9,17,1334] [upDateCtrol Class] <{8EB36110-1BD8-4E63-85B3-1B88355162C2}> [(Verified)CRYSTALCG, 4, 5, 0, 22] [QvodAdBlocker.QvodBlock] <{BD53542A-4AE0-451A-A777-39BB2D7A2756}> [] [Shockwave Flash Object] <{D27CDB6E-AE6D-11CF-96B8-444553540000}> [(Verified)Adobe Systems, Inc., 10,0,45,2] [PlayerCtrl Class] <{E05BC2A3-9A46-4A32-80C9-023A473F5B23}> [(Verified)Tencent, 3, 2, 165, 710] [PPLive Lite Class] <{EF0D1A14-1033-41A2-A589-240C01EDC078}> [] ================================================================ 服务 [ASP.NET State Service / aspnet_state][Stopped/Manual Start] <%SystemRoot%\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe> [Microsoft Corporation, 1.1.4322.573] [Human Interface Device Access / HidServ][Stopped/Auto Start] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "C:\Program Files\NetMeeting\%SESSIONNAME%\gvbqt.cc3"> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [ms-tl / Ms-tl_Srv][Stopped/Auto Start] [] [360 杀毒全盘扫描辅助服务 / scan][Stopped/Manual Start] <%SystemRoot%\System32\svchost.exe -k bdx --> "C:\Program Files\360\360sd\Scan.dll"> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111) | S.C. BitDefender S.R.L, 12, 0, 53, 0] [Microsoft Winows / Theurlwd][Stopped/Auto Start] <%SystemRoot%\System32\Theurlwd.url --> "C:\WINDOWS\system32\Theurlwd.url"> [] [tt / tt][Stopped/Auto Start] [] [360 杀毒实时防护服务 / 360rp][Running/Auto Start] <"C:\Program Files\360\360sd\360rp.exe"> [(Verified)360.cn, 1, 1, 0, 1307] [Tencent Software Update Service / TSUSVC][Stopped/Auto Start] <"d:\Program Files\Tencent\QQSoftMgr\1.0.375.203\TencentUpdateSvc.exe" -run> [(Verified)Tencent, 1.0 Beta3 Build 375] ================================================================ 驱动 [Driver for amdk8 Device / amdk8][Stopped/Manual Start] [(C) Microsoft Corporation. All rights reserved., 5.1.2600.5512 (xpsp.080413-2111)] [EfiSystemMon / EfiMon][Stopped/System Start] [] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] [360SelfProtection / 360SelfProtection][Running/System Start] [(Verified)360安全中心, 1, 0, 0, 1028] [BAPIDRV / BAPIDRV][Running/System Start] <\??\C:\WINDOWS\system32\drivers\BAPIDRV.SYS> [(Verified)360.cn, 1.0.0.1011] [bdfsfltr / bdfsfltr][Running/System Start] [(Verified)BitDefender S.R.L. Bucharest, ROMANIA, 0.4.182.4891, RELEASE, built by: WinDDK] [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start] [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK] [HookPort / HookPort][Running/Boot Start] [(Verified)360安全中心, 1, 0, 0, 1010] [ialm / ialm][Running/Manual Start] [(Verified)Intel Corporation, 6.14.10.5009] [Rainbow iKey Enumerator / iKeyEnum][Running/Manual Start] [(Verified)Rainbow Technologies Inc., 1.18.17.67] [Rainbow iKey Virtual Reader / iKeyIFD][Running/Manual Start] [(Verified)Rainbow Technologies Inc., 1.18.17.67] [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.0.5490 built by: WinDDK] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148)] [Rainbow iKey Token Service / RnbToken][Stopped/Manual Start] [(Verified)Rainbow Technologies Inc., 1.18.17.67] [Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start] [(Verified)Realtek Semiconductor Corporation , 5.726.0525.2009 built by: WinDDK] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086] ================================================================ 活动进程 [PID: 1788 / Administrator] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\WinRAR\rarext.dll [N/A] C:\Program Files\360\360sd\MenuEx.dll [(Verified)360.cn, 1, 1, 0, 1080] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] C:\WINDOWS\system32\igfxpph.dll [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\hccutils.DLL [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxsrvc.dll [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxrCHS.lrc [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxress.dll [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\mscoree.dll [Microsoft Corporation, 1.1.4322.573] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Shfusion.dll [Microsoft Corporation, 1.1.4322.573] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4] [PID: 1624 / Administrator] C:\WINDOWS\RTHDCPL.EXE [(Verified)Realtek Semiconductor Corp., 2.1.6.2] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 1796 / Administrator] C:\WINDOWS\system32\igfxtray.exe [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\hccutils.DLL [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxsrvc.dll [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxrCHS.lrc [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxress.dll [(Verified)Intel Corporation, 6.14.10.5009] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 836 / Administrator] C:\WINDOWS\system32\hkcmd.exe [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\hccutils.DLL [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxsrvc.dll [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxrCHS.lrc [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\WINWB86.IME [Microsoft Corporation, 4.00.950] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 916 / Administrator] C:\WINDOWS\system32\igfxpers.exe [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxsrvc.dll [(Verified)Intel Corporation, 6.14.10.5009] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 1916 / Administrator] C:\Program Files\Rainbow Technologies\iKey Components\Bin\iKeyACR.exe [(Verified)Rainbow Technologies, Inc., 2, 2, 0, 51] C:\WINDOWS\system32\k1pk112.dll [Rainbow Technologies Inc., 2, 6, 1, 22] C:\WINDOWS\system32\IKEYAPI.dll [(Verified)Rainbow Technologies, Inc., 2.12.2.74] C:\Program Files\Rainbow Technologies\iKey Components\Bin\iKeyCEW.dll [(Verified)Rainbow Technologies, Inc., 2, 2, 0, 51] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 1924 / Administrator] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 1968 / Administrator] C:\Program Files\Messenger\msmsgs.exe [(Verified)Microsoft Corporation, 4.7.3001] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 264 / Administrator] C:\WINDOWS\system32\igfxsrvc.exe [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxsrvc.dll [(Verified)Intel Corporation, 6.14.10.5009] C:\WINDOWS\system32\igfxdev.dll [(Verified)Intel Corporation, 6.14.10.5009] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 2300 / Administrator] C:\WINDOWS\system32\wuauclt.exe [(Verified)Microsoft Corporation, 7.4.7600.226 (winmain_wtr_wsus3sp2(wmbla).090806-1834)] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 3644 / Administrator] D:\Program Files\Tencent\QQ\Bin\QQ.exe [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\Common.dll [(Verified)Tencent, 1, 50, 1720, 0] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.DLL [Microsoft Corporation, 8.00.50727.4053] D:\Program Files\Tencent\QQ\Bin\KernelUtil.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\GF.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\xGraphic32.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\AFUtil.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\LoginPanel.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\IM.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\TaskTray.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\AppUtil.dll [(Verified)Tencent, 1, 50, 1720, 0] d:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\BasicCtrlDll.dll [(Verified)TENCENT, 8,0,773,1801] D:\Program Files\Tencent\QQ\Bin\MainFrame.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\AppFramework.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\SkinMgr.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PayCenter\Bin\PayCenter.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQVipMisc\Bin\QQVipMisc.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.NetBar\Bin\NetBar.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.VAS\Bin\VAS.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Wireless\Bin\Wireless.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPaiGift\Bin\PaiPaiGift.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQShow\Bin\QQShow.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.CRM\Bin\CRM.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Soso\Bin\Soso.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Weather\Bin\Weather.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Advertisement\Bin\Advertisement.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Memo\Bin\Memo.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQVip\Bin\QQVip.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.MMOG\Bin\MMOG.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQGame\Bin\QQGame.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\Bin\QQMusic.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Mail\Bin\Mail.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll [(Verified)Tencent, 1.50.1720.0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPai\Bin\PaiPai.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.SNSApp\Bin\SNSApp.dll [(Verified)Tencent, 1, 50, 1720, 0] C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll [(Verified)Tencent, 1.2.1.10] C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL [(Verified)Tencent, 1.2.1.6] D:\Program Files\Tencent\QQ\Bin\AFCtrl.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\SystemMsg.dll [(Verified)Tencent, 1, 50, 1720, 0] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A] D:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\ChatFrameApp.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\QInterLive.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\GroupApp.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\AppMisc.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\WBlog.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\Contacts.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\InformationBox.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqlive\Bin\QQLive.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.taotao\Bin\taotao.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.gamelife\Bin\GameLife.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.today\Bin\Today.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll [(Verified)Tencent, 1, 50, 1720, 0] C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx [(Verified)Adobe Systems, Inc., 10,0,45,2] D:\Program Files\Tencent\QQ\Plugin\com.tencent.sobar\Bin\SoBar.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\MsgMgr.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.remotehelp\Bin\RemoteHelp.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqwebsite\Bin\QQWebsite.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\LongCnn.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\VqqAllInOne.dll [(Verified)Tencent, 2, 4, 0, 1] D:\Program Files\Tencent\QQ\Bin\vqqConv.dll [(Verified)Tencent, 2, 4, 0, 1] D:\Program Files\Tencent\QQ\Bin\VQQTrace.dll [(Verified)Tencent, 2, 4, 0, 1] D:\Program Files\Tencent\QQ\Bin\VideoDevice.dll [(Verified)Tencent, 2, 4, 0, 1] D:\Program Files\Tencent\QQ\Bin\audioengine.dll [(Verified)Tencent, 2, 4, 0, 1] D:\Program Files\Tencent\QQ\Bin\GIPSVoiceEngineDLL.dll [(Verified)Global IP Solutions (GIPS), 3, 2, 0, 0] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\CustomFace.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\AddrSearch.dll [(Verified)Tencent, 2, 3, 12, 11] [PID: 3796 / Administrator] d:\Program Files\Tencent\QQ\Bin\TXPlatform.exe [(Verified)Tencent, 1, 50, 1720, 0] d:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll [(Verified)Tencent, 1, 50, 1720, 0] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] [PID: 3492 / Administrator] D:\Program Files\windows清理助手\arswp3\ArSwp3.exe [(Verified)Windows 清理助手, 3.1.1.0608] D:\Program Files\Tencent\QQ\Bin\RHComm.dll [(Verified)Tencent, 1, 50, 1720, 0] C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx [(Verified)Adobe Systems, Inc., 10,0,45,2] ================================================================ 文件关联 [.rar] <"C:\Program Files\WinRAR\WinRAR.exe" "%1"> [N/A] [ .zx] <%ProgramFiles%\UltraEdit\369\369safe.exe "%1" %*> [] [.zx2] <%ProgramFiles%\UltraEdit\369\369safe.exe "%1" %*> [] [.avi] <"D:\Program Files\StormII\Storm.exe" /play "%1"> [(Verified)北京暴风网际科技有限公司, 3, 10, 3, 17] [.ram] <"D:\Program Files\StormII\Storm.exe" /play "%1"> [(Verified)北京暴风网际科技有限公司, 3, 10, 3, 17] [.mod] <"D:\Program Files\StormII\Storm.exe" /play "%1"> [(Verified)北京暴风网际科技有限公司, 3, 10, 3, 17] [.wav] <"C:\Program Files\咪咕音乐\MusicPlayer.exe" -splay "%1"> [] ================================================================ Autorun.Inf ================================================================ Winsock提供者 ================================================================ 隐藏进程 [PID: 1900] C:\PROGRAM FILES\360\360SD\360SD.EXE [(Verified)360.cn, 1, 1, 0, 1308] [PID: 652] C:\PROGRAM FILES\360\360SD\360RP.EXE [(Verified)360.cn, 1, 1, 0, 1307] ================================================================ 可疑文件 ================================================================ HOSTS 127.0.0.1 localhost [/CODE]