[CODE]

2011-01-06,12:33:01

System Repair Engineer 2..6..12..1018
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 3 (Build 2600) - 

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
    <360sd><"C:\Program Files\360\360sd\360sdrun.exe">  [(Verified)Qizhi Software (beijing) Co. Ltd]
    <Thunder><d:\Program Files\Thunder Network\Thunder\Program\Thunder.exe -silent -StartType:AutoRun>  [(Verified)ShenZhen Thunder Networking Technologies Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <360Safetray><"D:\Program Files\360\360safe\safemon\360Tray.exe" /start>  [(Verified)Qizhi Software (beijing) Co. Ltd]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]

==================================
启动文件夹
N/A

==================================
服务
[360 杀毒实时防护服务 / 360rp][Running/Auto Start]
  <"C:\Program Files\360\360sd\360rp.exe"><360.cn>
[c20ukdrwsvc / c20ukdrwsvc][Stopped/Manual Start]
  <"C:\Program Files\95599 Certificate Tools\Watertek\c20ukdrwsvr.exe"><N/A>
[eLive Security Service / eLiveSafe][Stopped/Manual Start]
  <"C:\Program Files\ChinaTelecom\eLive\PlugIns\Safe\elivesafe.exe"><贝壳网际（北京）安全技术有限公司>
[HDZB Comm Service For V2.0 / HZ_CommSrv][Running/Auto Start]
  <C:\WINDOWS\system32\HZ_CommSrv.exe><华大智宝电子系统有限公司>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe"><Macrovision Corporation>
[PnkBstrA / PnkBstrA][Stopped/Manual Start]
  <C:\WINDOWS\system32\PnkBstrA.exe><N/A>
[360 杀毒全盘扫描辅助服务 / scan][Stopped/Manual Start]
  <C:\WINDOWS\System32\svchost.exe -k bdx-->C:\Program Files\360\360sd\Scan.dll><S.C. BitDefender S.R.L>
[XLDoctor Services / XLDoctor Services][Stopped/Manual Start]
  <d:\Program Files\Thunder Network\Thunder\Program\DctSer.exe><深圳市迅雷网络技术有限公司>
[主动防御 / ZhuDongFangYu][Running/Auto Start]
  <"D:\Program Files\360\360safe\deepscan\zhudongfangyu.exe"><360.cn>

==================================
驱动程序
[360netmon / 360netmon][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\360netmon.sys><360.cn>
[360SelfProtection / 360SelfProtection][Running/System Start]
  <system32\drivers\360SelfProtection.sys><360安全中心>
[Lenovo Virtual Power Controller Driver / ACPIVPC][Running/Manual Start]
  <system32\DRIVERS\AcpiVpc.sys><Lenovo Corporation>
[AMD AGP Bus Filter Driver / amdagp][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
[Broadcom NetXtreme Gigabit Ethernet / b57w2k][Running/Manual Start]
  <system32\DRIVERS\b57xp32.sys><Broadcom Corporation>
[BAPIDRV / BAPIDRV][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\BAPIDRV.SYS><360.cn>
[Broadcom 802.11 网络适配器驱动程序 / BCM43XX][Running/Manual Start]
  <system32\DRIVERS\bcmwl5.sys><Broadcom Corp.>
[bdfsfltr / bdfsfltr][Running/System Start]
  <system32\DRIVERS\bdfsfltr.sys><BitDefender S.R.L. Bucharest, ROMANIA>
[Conexant UAA Function Driver for High Definition Audio Service / CnxtHdAudService][Running/Manual Start]
  <system32\drivers\CHDAU2.sys><Conexant Systems Inc.>
[Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start]
  <system32\DRIVERS\DKbFltr.sys><Dritek System Inc.>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><奇虎网>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HookPort / HookPort][Running/Boot Start]
  <\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[hptpro / hptpro][Stopped/Boot Start]
  <\SystemRoot\system32\DRIVERS\hptpro.sys><HighPoint Technologies, Inc.>
[Intel AHCI Controller / iaStor][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\iaStor.sys><Intel Corporation>
[Chinachip USB Loader NT service / jz4740_usb][Stopped/Manual Start]
  <System32\Drivers\CN2008USBL.sys><Your Corporation>
[Driver for netfilter Device / netfilter][Running/Manual Start]
  <system32\DRIVERS\netfilter.sys><Windows (R) Win 7 DDK provider>
[Netgroup Packet Filter / NPF][Stopped/Manual Start]
  <system32\drivers\npf.sys><Politecnico di Torino>
[nv / nv][Running/Manual Start]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Service for NVIDIA High Definition Audio Driver / NVHDA][Running/Manual Start]
  <system32\drivers\nvhda32.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Quantum DeepScanner Servers / qutmdserv][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\qutmdrv.sys><360.cn>
[qutmipc / qutmipc][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\qutmipc.sys><360安全中心>
[Driver for rockusb Device / rockusb][Stopped/Manual Start]
  <system32\DRIVERS\rockusb.sys><Fuzhou Rockchip Electronics Co,Ltd.>
[Driver for rockusb27 Device / rockusb27][Stopped/Manual Start]
  <system32\DRIVERS\rockusb27.sys><Fuzhou Rockchip Electronics Co,Ltd.>
[SafeBoxKrnl / SafeBoxKrnl][Running/System Start]
  <\??\C:\WINDOWS\system32\Drivers\safeboxkrnl.sys><360安全中心>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[Prolific2 Serial port driver / Ser2pl][Stopped/Manual Start]
  <system32\DRIVERS\ser2pl.sys><Prolific Technology Inc.>
[shadowsafe / shadowsafe][Stopped/Manual Start]
  <\??\C:\Program Files\dnf\shadowsafe.sys><N/A>
[SATALink driver accelerator / SiFilter][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\SiWinAcc.sys><Silicon Image, Inc.>
[SATALink External Device Filter / SiRemFil][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\SiRemFil.sys><Silicon Image, Inc.>
[SIS AGP Bus Filter / sisagp][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[TesDrvPt / TesDrvPt][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\TesDrvPt.sy><TENCENT>
[TesSafe / TesSafe][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\TesSafe.sys><TENCENT>
[usbUDisc / usbUDisc][Stopped/Manual Start]
  <system32\DRIVERS\USBDrv.sys><Scott>

==================================
浏览器加载项
[ThunderAtOnce Class]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233} <d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) 深圳市迅雷网络技术有限公司>
[PIPI Link Helper]
  {1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} <C:\Program Files\HaoETV\core\pipi\JfCheck.dll, PIPI Tech.>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <d:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.1.4.2090.dll, (Signed) 深圳市迅雷网络技术有限公司>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\Program Files\360\360safe\safemon\safemon.dll, (Signed) 360.cn>
[启动迅雷5]
  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <d:\Program Files\Thunder Network\Thunder\program\Thunder.exe, (Signed) 深圳市迅雷网络技术有限公司>
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, (Signed) >
[GDGetTokenInfo Class]
  {3AA9CF07-DF20-48FF-98BE-DED276E40146} <C:\WINDOWS\system32\GDREAD~1.DLL, >
[DLoader Class]
  {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} <C:\WINDOWS\Downloaded Program Files\downloader.dll, N/A>
[GDGetVer Class]
  {7CCE07A5-A590-4554-B5C3-082840D7012E} <C:\WINDOWS\DOWNLO~1\ICBC_G~1.DLL, N/A>
[AxSubmitControl Class]
  {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\Downloaded Program Files\SubmitControl.dll, N/A>
[InfoSecICBCNetSign Class]
  {B1FBC1AD-5644-4084-882A-0F8BA85E7506} <C:\WINDOWS\DOWNLO~1\ICBC_N~1.DLL, N/A>
[]
  {00000000-0593-4356-9CF7-1D8C2B3343C0} <, >
[]
  {00450039-0041-0043-3900-450032002D00} <, >
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) 深圳市迅雷网络技术有限公司>
[PhotoDrawEx Class]
  {05F5F404-7C24-4B39-B5CC-340CEDEB9C0D} <d:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\bin\QQPhotoDrawEx\QQPhotoDrawEx.dll, (Signed) Tencent>
[Web Browser Applet Control]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[]
  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <, >
[Player Class]
  {11F2A418-94B2-4e16-9B0C-B00C0435F903} <C:\Program Files\HaoETV\core\qqlive\LiveMedia.dll, (Signed) Tencent>
[KuGoo3Down Control]
  {162AF25B-5A2A-448E-A842-194653EF3E05} <C:\WINDOWS\system32\KuGoo3DownXControl.ocx, (Signed) N/A>
[PIPI Link Helper]
  {1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} <C:\Program Files\HaoETV\core\pipi\JfCheck.dll, PIPI Tech.>
[WWPicUploadCtrl Class]
  {1D63232D-4F15-4A42-890D-EE617AA1537D} <D:\Program Files\AliWangWang\modules\1685\WWPictureUpload.dll, Alibaba software (Shanghai) Corporation>
[InstallHelper Class]
  {1DABF8D5-8430-4985-9B7F-A30E53D709B3} <C:\Program Files\HaoETV\core\qqlive\MMInstaller.dll, (Signed) Tencent>
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, (Signed) >
[InfoScan Control]
  {1F14548F-6975-40F1-AE24-6E2D1D449B2F} <C:\PROGRA~1\CCBCOM~1\Detector\InfoScan.dll, CCB>
[Toolbar Extension for Executable]
  {1FBA04EE-3024-11D2-8F1F-0000F87ABD16} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, (Signed) N/A>
[]
  {2559A1F6-21D7-11D4-BDAF-00C04F60B9F0} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[IETag Factory]
  {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[SNCtrl Class]
  {391E41FF-1CE1-493F-9B34-8BC53FB76A86} <C:\WINDOWS\system32\HDCCBCtrl.dll, (Signed) >
[GDGetTokenInfo Class]
  {3AA9CF07-DF20-48FF-98BE-DED276E40146} <C:\WINDOWS\system32\GDREAD~1.DLL, >
[Microsoft Office Control]
  {4453D895-F2A1-4A38-A285-1EF9BD3F6D5D} <C:\PROGRA~1\MICROS~1\OFFICE11\AUTHZAX.DLL, (Signed) Microsoft Corporation>
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <d:\Program Files\Thunder Network\Thunder\BHO\ThunderAgent7.1.4.2090.dll, (Signed) 深圳市迅雷网络技术有限公司>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, (Signed) >
[]
  {4E83D567-4697-4F7B-B1F0-A513B01DB89A} <, >
[HHCtrl Object]
  {52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, (Signed) Microsoft Corporation>
[WangWangX Class]
  {5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} <D:\Program Files\AliWangWang\AliIMX.dll, (Signed) Alibaba software (Shanghai) Corporation.>
[PowerPlayer Control]
  {5EC7C511-CD0F-42E6-830C-1BD9882F3458} <C:\PROGRA~1\PPStream\POWERP~1.DLL, (Signed) PPStream Inc.>
[]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <, >
[InfoSecNetSign Class]
  {62B938C4-4190-4F37-8CF0-A92B0A91CC77} <C:\WINDOWS\system32\NetSign.dll, (Signed) Infosec Technologies Co., Ltd.>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[MUWebControl Class]
  {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\Downloaded Program Files\InputControl.dll, N/A>
[DLoader Class]
  {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} <C:\WINDOWS\Downloaded Program Files\downloader.dll, N/A>
[]
  {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} <, >
[GDGetVer Class]
  {7CCE07A5-A590-4554-B5C3-082840D7012E} <C:\WINDOWS\DOWNLO~1\ICBC_G~1.DLL, N/A>
[360SafeLive]
  {87515F61-A66C-4319-A0E0-D416CB8059E3} <D:\Program Files\360\360safe\Safelive.dll, (Signed) 360.cn>
[]
  {8779A1F6-21D7-16D6-BDAF-00C04F70B7F0} <, >
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, (Signed) Microsoft Corporation>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <d:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.1.4.2090.dll, (Signed) 深圳市迅雷网络技术有限公司>
[AxSubmitControl Class]
  {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\Downloaded Program Files\SubmitControl.dll, N/A>
[]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <, >
[OFrameObject Class]
  {9701758C-4373-482E-B13C-776C048EC890} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7104.319.(888).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[VersionDetector Class]
  {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} <C:\Program Files\Common Files\Thunder Network\KanKan\vd.1.1.0.32.(889).dll, (Signed) ShenZhen Thunder Networking Technologies,Ltd.>
[APlayer Control]
  {A9322148-C691-4B9D-91FC-B9C461DBE9DD} <C:\Program Files\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7104.319.(888).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[InfoSecICBCNetSign Class]
  {B1FBC1AD-5644-4084-882A-0F8BA85E7506} <C:\WINDOWS\DOWNLO~1\ICBC_N~1.DLL, N/A>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\Program Files\360\360safe\safemon\safemon.dll, (Signed) 360.cn>
[InfosecCCBNetSign Class]
  {BC96F5A4-C930-4226-ADAB-59349AE585E9} <C:\Program Files\CCBComponents\Detector\CCBNetSignCom.dll, (Signed) Infosec Technologies Co., Ltd.>
[AUDIO__MID Moniker Class]
  {CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__MP3 Moniker Class]
  {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__X_MS_WMA Moniker Class]
  {CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
  {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10l.ocx, (Signed) Adobe Systems, Inc.>
[QQLive Class]
  {D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62} <C:\Program Files\HaoETV\core\qqlive\LiveAPI.dll, (Signed) Tencent>
[PlayerCtrl Class]
  {E05BC2A3-9A46-4a32-80C9-023A473F5B23} <d:\Program Files\Tencent\QQMusic\QzoneMusic.dll, (Signed) Tencent>
[]
  {EF0D1A14-1033-41A2-A589-240C01EDC078} <, >
[XPPlayer Class]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.5914.257.(133).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[SEInterface Class]
  {FDAEAB93-6DC0-4A63-81C6-95C88ED36F6A} <C:\Program Files\SogouExplorer\seapi.dll, (Signed) Sohu.com Inc.>
[使用迅雷下载]
  <d:\Program Files\Thunder Network\Thunder\BHO\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <d:\Program Files\Thunder Network\Thunder\BHO\GetAllUrl.htm, N/A>

==================================
正在运行的进程
[PID: 1332 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1436 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1464 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[PID: 1508 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[PID: 1520 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[PID: 1692 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1792 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1944 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 168 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 332 / SYSTEM][D:\Program Files\360\360safe\deepscan\zhudongfangyu.exe]  [360.cn, 3, 2, 2, 1003]
    [D:\Program Files\360\360safe\SoftMgr\360SoftMgrS.dll]  [360.cn, 2, 1, 6, 1053]
    [D:\Program Files\360\360safe\deepscan\CloudCom2.dll]  [360.cn, 3, 2, 5, 6102]
    [D:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 6, 21, 0]
    [D:\Program Files\360\360safe\deepscan\qutmload.dll]  [360.cn, 6, 8, 0, 1003]
[PID: 1024 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.6024 (xpsp_sp3_gdr.100817-1626)]
[PID: 1076 / Administrator][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\Ku6Kss.dll]  [酷6网（北京）信息技术有限公司, 2, 0, 0, 1]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\Program Files\360\360sd\MenuEx.dll]  [360.cn, 1, 2, 0, 1320]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [D:\Program Files\媒体播放器管理工具 4.27\AMVConverter\AmvTransform.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\AliWangWang\AliIMExt.dll]  [Alibaba software (Shanghai) Corporation., 1.0.0.1]
    [d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  [深圳市迅雷网络技术有限公司, 5,9,8,1090]
    [C:\WINDOWS\system32\ATL71.DLL]  [Microsoft Corporation, 7.10.6101.0]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 1092 / Administrator][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\Ku6Kss.dll]  [酷6网（北京）信息技术有限公司, 2, 0, 0, 1]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10l.ocx]  [Adobe Systems, Inc., 10,1,102,64]
[PID: 1220 / Administrator][D:\Program Files\360\360safe\safemon\360Tray.exe]  [360.cn, 7, 3, 1, 1026]
    [D:\Program Files\360\360safe\ipc\ipcservice.dll]  [360.CN, 6, 8, 0, 1002]
    [D:\Program Files\360\360safe\ipc\fileMgr.dll]  [360.cn, 6, 8, 0, 1002]
    [D:\Program Files\360\360safe\ipc\yhregd.dll]  [360.cn, 6, 8, 0, 1004]
    [D:\Program Files\360\360safe\ipc\appd.dll]  [360.cn, 6, 8, 0, 1008]
    [D:\Program Files\360\360safe\safemon\360compro.dll]  [360安全中心, 6, 2, 0, 1011]
    [D:\Program Files\360\360safe\safemon\360webpro.dll]  [360.CN, 1, 3, 0, 1031]
    [D:\Program Files\360\360safe\safemon\360traylive.dll]  [360安全中心, 7, 0, 0, 1010]
    [D:\Program Files\360\360safe\safemon\360procmon.dll]  [360.CN, 6, 8, 0, 1006]
    [D:\Program Files\360\360safe\safemon\SelfProtectAPI2.dll]  [360.CN, 6, 5, 5, 1004]
    [D:\Program Files\360\360safe\safemon\360safemonpro.tpi]  [360.cn, 1, 3, 3, 1001]
    [D:\Program Files\360\360safe\safemon\netm.tpi]  [360.cn, 2, 1, 3, 1228]
    [D:\Program Files\360\360safe\safemon\netmon.tpi]  [360.cn, 2, 1, 4, 1125]
    [D:\Program Files\360\360safe\safemon\obTracer.tpi]  [360.cn, 6, 8, 0, 1001]
    [D:\Program Files\360\360safe\deepscan\qutmload.dll]  [360.cn, 6, 8, 0, 1003]
    [D:\Program Files\360\360safe\ipc\qutmipc.dll]  [360.cn, 6, 5, 3, 1004]
    [D:\Program Files\360\360safe\deepscan\BAPI.dll]  [360.cn, 2.0.0.1007]
    [D:\Program Files\360\360safe\SafeLive.dll]  [360.cn, 1, 0, 0, 1010]
    [D:\Program Files\360\360safe\pdown.dll]  [360.cn, 1, 2, 0, 1026]
    [D:\Program Files\360\360safe\360Common.dll]  [360.cn, 7, 3, 0, 1020]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [D:\Program Files\360\360safe\safemon\urlproc.dll]  [360.cn, 1, 2, 8, 1001]
    [D:\Program Files\360\360safe\safemon\urlprocnet.dll]  [360.cn, 1, 2, 3, 1010]
    [D:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 6, 21, 0]
    [D:\Program Files\360\360safe\360ver.dll]  [奇虎网, 7, 5, 0, 2001]
    [D:\Program Files\360\360safe\netmon\360netctrl.dll]  [360.cn, 2, 1, 5, 1224]
    [D:\Program Files\360\360safe\deepscan\Cloudcom2.dll]  [360.cn, 3, 2, 5, 6102]
    [D:\Program Files\360\360safe\efiproc.dll]  [奇虎360安全卫士, 1, 0, 0, 1005]
    [D:\Program Files\360\360safe\ipc\PatchCheck.dll]  [360.cn, 1, 1, 0, 1006]
[PID: 1304 / Administrator][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[PID: 1356 / Administrator][C:\Program Files\360\360sd\360sd.exe]  [360.cn, 1, 2, 0, 1328]
    [C:\Program Files\360\360sd\QTQuart.dll]  [360.cn, 1, 1, 0, 1203]
    [C:\Program Files\360\360sd\PSAPI.DLL]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\Program Files\360\360sd\CrashReport.dll]  [360.cn, 1, 0, 0, 1075]
    [C:\Program Files\360\360sd\DmRule.dll]  [360.cn, 1, 2, 0, 1321]
    [C:\Program Files\360\360sd\sqlite3.dll]  [N/A, ]
[PID: 2024 / SYSTEM][C:\Program Files\360\360sd\360rp.exe]  [360.cn, 1, 2, 0, 1324]
    [C:\Program Files\360\360sd\Router.dll]  [360安全中心, 1, 0, 0, 1069]
    [C:\Program Files\360\360sd\PSAPI.DLL]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\Program Files\360\360sd\BDFLTLIB.DLL]  [, ]
    [C:\Program Files\360\360sd\SCAN.DLL]  [S.C. BitDefender S.R.L, 12, 0, 53, 0]
    [C:\Program Files\360\360sd\Wrapper.dll]  [360安全中心, 1, 0, 0, 1]
    [C:\Program Files\360\360sd\QTQuart.dll]  [360.cn, 1, 1, 0, 1203]
    [C:\Program Files\360\360sd\CrashReport.dll]  [360.cn, 1, 0, 0, 1075]
    [C:\Program Files\360\360sd\cloudcom2.dll]  [360.cn, 3, 2, 5, 1001]
    [C:\Program Files\360\360sd\wlist.dll]  [360安全中心, 3, 0, 0, 1004]
    [C:\Program Files\360\360sd\bapi.dll]  [360.cn, 2.0.0.1001]
    [C:\Program Files\360\360sd\smartscn.dll]  [BitDefender S.R.L., 12.0.0.11]
    [C:\PROGRA~1\360\360sd\bdcore.dll]  [BitDefender, 11, 0, 0, 42]
    [C:\PROGRA~1\360\360sd\trufos.dll]  [N/A, ]
    [C:\PROGRA~1\360\360sd\avxdisk.dll]  [BitDefender, 1, 0, 0, 1]
    [C:\Program Files\360\360sd\heavygate.dll]  [360.cn, 3, 6, 21, 0]
[PID: 192 / SYSTEM][C:\WINDOWS\system32\HZ_CommSrv.exe]  [华大智宝电子系统有限公司, 1, 2, 0, 1]
[PID: 492 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 2084 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 2808 / Administrator][C:\Program Files\ChinaTelecom\eLive\eLive.exe]  [中国电信, 0.9.9.119]
    [C:\Program Files\ChinaTelecom\eLive\NewEHomeServices.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\MsgRouteway.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\VNetMailServices.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\EHomeRelation.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\EHomeLoginDLL.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\ehomeem.dll]  [TODO: <公司名>, 1.0.0.9]
    [C:\Program Files\ChinaTelecom\eLive\ehomeMP.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\EMWebServices.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\EHomeCollection.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\Ckrp.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\MD.dll]  [, ]
    [C:\Program Files\ChinaTelecom\eLive\SMSMgr.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\EChatDlg.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\ExtensionMgr.dll]  [China Telecom Co.Ltd, 1.1.0.139]
    [C:\Program Files\ChinaTelecom\eLive\Download.dll]  [TODO: <公司名>, 1.0.0.3]
    [C:\Program Files\ChinaTelecom\eLive\Channel.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\ehomeNotify.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\EHomeHistMsg.dll]  [TODO: <公司名>, 1.0.0.4]
    [C:\Program Files\ChinaTelecom\eLive\EHomeUpload.dll]  [TODO: <公司名>, 1.0.0.1]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\E8\NetRun.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\Commu.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\DialManager.dll]  [TODO: <公司名>, 09.09.04]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\IPMake.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\CWOperator.dll]  [TODO: <公司名>, 09.09.11]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\DialManage.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\Singleton.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\Communicate.dll]  [GDCN, 2008, 1, 16, 15]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\ModBase.dll]  [, 1, 2, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\Configure.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\CWDriverMgrPlugin.dll]  [, 9.7.30.0]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\CWDriverSetup.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\DialModule.dll]  [GDCN, 9, 8, 6, 9]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\ehome\DialHistory.dll]  [TODO: <公司名>, 1.1.0.2]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\c+w\ProxyDef.dll]  [, 10, 6, 0, 0]
    [C:\PROGRA~1\CHINAT~1\eLive\PlugIns\C_W~1\CDMAOP~1.OCX]  [Alex, 1, 0, 0, 1]
    [C:\PROGRA~1\CHINAT~1\eLive\PlugIns\C_W~1\Language.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\CTATMgrModule.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\DialUI.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\PinModule.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\ClientCoexist.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\VerifyBasic.dll]  [, 1, 0, 0, 1]
    [C:\PROGRA~1\CHINAT~1\eLive\PlugIns\C_W~1\CdmaDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Common Files\B0B19AEC-413E-4654-86EE-3FD4E7655A93\WiFiMan.dll]  [Nicomsoft Ltd., 5.1.0.0]
    [C:\Program Files\Common Files\B0B19AEC-413E-4654-86EE-3FD4E7655A93\WifiClient.dll]  [TODO: <公司名>, 2.0.0.1]
    [C:\Program Files\Common Files\B0B19AEC-413E-4654-86EE-3FD4E7655A93\BroadCom.dll]  [TODO: <公司名>, 1.0.0.1]
    [C:\Program Files\Common Files\B0B19AEC-413E-4654-86EE-3FD4E7655A93\preflib.dll]  [N/A, ]
    [C:\PROGRA~1\CHINAT~1\eLive\PlugIns\C_W~1\DriverSetup.dll]  [, 1, 0, 0, 1]
    [C:\PROGRA~1\CHINAT~1\eLive\PlugIns\C_W~1\CDMAMG~1.OCX]  [微软中国, 1, 0, 0, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\C+W\MiniWindow.dll]  [, 1, 0, 0, 5]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\ehome.dll]  [, 2, 2, 0, 5]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\eHomePhone.dll]  [, 2, 2, 3, 1]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\sip2005.dll]  [TODO: <Company name>, 2.2.2.3]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\sipAgent.dll]  [MS Tech, 1.0.1.0]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\AVLIB.dll]  [ms tech, 1.0.0.2]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\XMLparser.dll]  [N/A, ]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\xerces-c_2_7_vc80.dll]  [Apache Software Foundation, 2, 7, 0]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\CommonTools.dll]  [, 1, 0, 0, 6]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\AddrTable.dll]  [, 2, 1, 0, 3]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\zlib.dll]  [, 1.1.3]
    [C:\Program Files\ChinaTelecom\eLive\PlugIns\EHome\ActivationReporter.dll]  [, 1, 0, 1, 1]
[PID: 3092 / Administrator][C:\Program Files\Windows Live\Messenger\msnmsgr.exe]  [Microsoft Corporation, 14.0.8089.0726]
    [C:\Program Files\Windows Live\Messenger\CRYPTNET.dll]  [N/A, ]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
[PID: 2392 / Administrator][D:\Program Files\7fgame\7FGame.exe]  [上海起凡数字技术有限公司, 2, 0, 2, 6]
    [D:\Program Files\7fgame\Sqlite3.dll]  [N/A, ]
    [D:\Program Files\7fgame\7fAutoMatch.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fSkin.dll]  [ , 1, 8, 1, 4]
    [D:\Program Files\7fgame\7FGameApp.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\IMGame.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fSocket.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fProxy.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fUnion.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\PreGame.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fCtrls.dll]  [, 1, 8, 4, 3]
    [D:\Program Files\7fgame\RICHED20.dll]  [Microsoft Corporation, 5.30.23.1228]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [D:\Program Files\7fgame\game_info.dll]  [N/A, ]
    [D:\Program Files\7fgame\QFImageOle.dll]  [上海起凡数字技术有限公司, 1, 0, 0, 1]
[PID: 2860 / Administrator][D:\Program Files\7fgame\7Fhomepage.exe]  [, 1, 0, 0, 1]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10l.ocx]  [Adobe Systems, Inc., 10,1,102,64]
[PID: 2520 / Administrator][D:\Program Files\7fgame\7FGame.exe]  [上海起凡数字技术有限公司, 2, 0, 2, 6]
    [D:\Program Files\7fgame\Sqlite3.dll]  [N/A, ]
    [D:\Program Files\7fgame\7fAutoMatch.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fSkin.dll]  [ , 1, 8, 1, 4]
    [D:\Program Files\7fgame\7FGameApp.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\IMGame.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fSocket.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fProxy.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fUnion.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\PreGame.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\7fgame\7fCtrls.dll]  [, 1, 8, 4, 3]
    [D:\Program Files\7fgame\RICHED20.dll]  [Microsoft Corporation, 5.30.23.1228]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
[PID: 1268 / Administrator][D:\Program Files\7fgame\Service\Media\7fMedia.exe]  [, 0.9.1020.1700]
    [D:\Program Files\7fgame\Service\Media\ACE.dll]  [, 5.8]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
[PID: 3692 / Administrator][D:\Program Files\7fgame\7FUpdateOld.exe]  [, 1, 0, 0, 1]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
[PID: 3608 / Administrator][C:\WINDOWS\notepad.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
[PID: 3408 / Administrator][D:\Program Files\Tencent\QQ\Bin\QQ.exe]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\Common.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\KernelUtil.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\GF.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\xGraphic32.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\AppUtil.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [D:\Program Files\Tencent\QQ\Bin\MainFrame.dll]  [Tencent, 1, 32, 1060, 0]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10l.ocx]  [Adobe Systems, Inc., 10,1,102,64]
    [D:\Program Files\Tencent\QQ\Bin\IM.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\TaskTray.dll]  [Tencent, 1, 32, 1060, 0]
    [d:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\KernelMisc.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\AppMisc.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\AppCtrl.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\ChatFrame.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\CustomFace.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\LongCnn.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\MsgMgr.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\SkinMgr.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\QInterLive.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\SystemMsg.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Weather\Bin\Weather.dll]  [Tencent, 1, 32, 1060, 0]
    [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll]  [Tencent, 1.2.1.6]
    [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL]  [Tencent, 1.2.1.5]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [D:\Program Files\Tencent\QQ\Bin\GroupApp.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.snsapp\Bin\SNSApp.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvipmisc\Bin\QQVipMisc.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\InformationBox.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.mail\Bin\Mail.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvip\Bin\QQVip.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Plugin\com.tencent.memo\Bin\Memo.dll]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\Tencent\QQ\Bin\AddrSearch.dll]  [Tencent, 2, 3, 12, 11]
[PID: 2888 / Administrator][d:\Program Files\Tencent\QQ\Bin\TXPlatform.exe]  [Tencent, 1, 32, 1060, 0]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [d:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1, 32, 1060, 0]
[PID: 2636 / Administrator][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]
    [D:\Program Files\360\360safe\safemon\Adfilter.dll]  [360.cn, 1, 0, 0, 1010]
    [D:\Program Files\360\360safe\safemon\urlproc.dll]  [360.cn, 1, 2, 8, 1001]
    [D:\Program Files\360\360safe\safemon\urlprocnet.dll]  [360.cn, 1, 2, 3, 1010]
    [D:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 6, 21, 0]
    [D:\Program Files\360\360safe\safemon\LoadWDUI.dll]  [360.cn, 1, 0, 0, 1019]
    [C:\WINDOWS\system32\Ku6Kss.dll]  [酷6网（北京）信息技术有限公司, 2, 0, 0, 1]
    [d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  [深圳市迅雷网络技术有限公司, 5,9,8,1090]
    [C:\WINDOWS\system32\ATL71.DLL]  [Microsoft Corporation, 7.10.6101.0]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [d:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.1.4.2090.dll]  [深圳市迅雷网络技术有限公司, 7,1,4,2090]
    [D:\Program Files\360\360safe\safemon\sepro.dll]  [360.cn, 1, 2, 0, 1004]
    [d:\Program Files\Thunder Network\Thunder\BHO\xldb.7.1.4.2090.dll]  [深圳市迅雷网络技术有限公司, 1, 0, 1, 6]
    [d:\Program Files\Thunder Network\Thunder\BHO\xldp.7.1.4.2090.dll]  [深圳市迅雷网络技术有限公司, 1, 0, 2, 23]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10l.ocx]  [Adobe Systems, Inc., 10,1,102,64]
[PID: 2984 / Administrator][D:\杀毒\sr-engldr.EXE]  [1111, 2..6..12..1018]
    [D:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 6, 7, 8, 1010]

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1       localhost
0.0.0.0    211.94.190.80
0.0.0.0   211.94.190.80
0.0.0.0   adsresult.joywell.com.cn
0.0.0.0   server1.adpolestar.net

==================================
进程特权扫描
特殊特权被允许： SeLoadDriverPrivilege [PID = 1464, C:\WINDOWS\SYSTEM32\WINLOGON.EXE]
特殊特权被允许： SeDebugPrivilege [PID = 1268, D:\PROGRAM FILES\7FGAME\SERVICE\MEDIA\7FMEDIA.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1268, D:\PROGRAM FILES\7FGAME\SERVICE\MEDIA\7FMEDIA.EXE]

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]