[CODE] 2011-04-09,15:12:56 SysLog Scanner 3.1 - build 20100608 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 3 (build 2600) ================================================================ 注册项 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [(Verified)Samsung, 1.0.0.0] [(Verified)Samsung Electronics Co., Ltd., 2, 0, 0, 100] [Copyright © 2011, 1.0.0.0] <360sd> <"C:\Program Files\360\360sd\360sdrun.exe"> [(Verified)360.cn, 1, 2, 0, 1323] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [Lenovo(Beijing)Limited, 3.0.0.9] [Lenovo (Beijing) Limited, 3, 0, 1, 2] <360Safetray> <"C:\Program Files\360\360safe\safemon\360Tray.exe" /start> [(Verified)360.cn, 7, 7, 0, 1007] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [HKEY_CURRENT_USER\Control Panel\Desktop] [N/A] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders] [(Verified)Microsoft Corporation, 6.00.7755 | (Verified)Microsoft Corporation, 5.1.2600.6006 (xpsp_sp3_qfe.100629-1819) | (Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 6.1.1825.0] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify] [(Verified)Egis Technology Inc. , 7, 0, 0, 25] [(Verified)Intel Corporation, 6.14.10.4964] [(Verified)UPEK Inc., 5.8.1.4199] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components] <{6BF52A52-394A-11d3-B153-00C04F79FAA6}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339) | N/A] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt] <&使用优蛋下载> [N/A] <&使用优蛋下载全部链接> [N/A] <上传到淘江湖相册> [N/A] <使用迅雷下载> [N/A] <使用迅雷下载全部链接> [N/A] <添加为阿里旺旺表情> [N/A] <添加到QQ表情> [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors] [Hewlett-Packard Company, 61.071.246.00] ================================================================ 启动组 ================================================================ 任务计划 ================================================================ 组件 -------------------------------- Shell Extension [Display Panning CPL Extension] <{42071714-76d4-11d1-8b24-00a0c9068ff3}> [] [HyperTerminal Icon Ext] <{88895560-9AA2-1069-930E-00AA0030EBC8}> [(Verified)Hilgraeve, Inc., 5.1.2600.0] [任务栏和「开始」菜单] <{0DF44EAA-FF21-4412-828E-260A8728E7F1}> <> [] [WinRAR shell extension] <{B41DB860-8EE4-11D2-9906-E49FADC173CA}> [N/A] [HashTab Property Page] <{8A56567E-A333-4843-B6E1-C3A262E41D8C}> [尐ˊ;栤嚸┌. QQ:582855880, 2.0.7.0] [Synaptics Control Panel] <{2F603045-309F-11CF-9774-0020AFD0CFF6}> [(Verified)Synaptics, Inc., 11.1.1 03Apr08] [WdmidleDeviceShellExtension] <{2d3dd4c0-3bd7-11d2-821e-444553540000}> [N/A] [NvCpl DesktopContext Class] <{A70C977A-BF00-412C-90B7-034C51DA2439}> [(Verified)NVIDIA Corporation, 6.14.11.7597] [Desktop Explorer] <{1CDB2949-8F65-4355-8456-263E7C208A5D}> [N/A] -------------------------------- Protocols [] <{BBCA9F81-8F4F-11D2-90FF-0080C83D3571}> [N/A] -------------------------------- Context Menu [OpenFolder] <{0DE1378D-F811-40E6-B60A-1CC56F57D3E9}> [(Verified)Alibaba software (Shanghai) Corporation., 1.0.0.1] [Safe360Ext] <{7C0F6D57-E799-4C8A-A319-8E2B4D724CF0}> [(Verified)360.cn, 7, 5, 0, 1005] [SD360] <{086F171D-5ED1-4ED2-B736-CFF3AD6A128E}> [(Verified)360.cn, 1, 1, 0, 1080] [WinRAR] <{B41DB860-8EE4-11D2-9906-E49FADC173CA}> [N/A] [EgisShellExt] <{4AC48C52-DA87-48AB-BE92-96E4F0070CEA}> [(Verified)Egis Technology Inc. , 7, 0, 0, 13] -------------------------------- BrowserHelperObject [ThunderAtOnce Class] <{01443AEC-0FD1-40fd-9C87-E93D1494C233}> [Thunder Networking Technologies,LTD, 1.0.5.34] [Thunder Browser Helper] <{889D2FEB-5411-4565-8998-1DD2C5261283}> [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120] [SafeMon Class] <{B69F34DD-F0F9-42DC-9EDD-957187DA688D}> [(Verified)360.cn, 6, 8, 1, 1030] -------------------------------- ActiveX Extension [] <{00EF2092-6AC5-47C0-BD25-CF2D5D657FEB}> [] [ThunderAtOnce Class] <{01443AEC-0FD1-40FD-9C87-E93D1494C233}> [Thunder Networking Technologies,LTD, 1.0.5.34] [PhotoDrawEx Class] <{05F5F404-7C24-4B39-B5CC-340CEDEB9C0D}> [(Verified)Tencent, 2, 25, 166, 120] [WWPicUploadCtrl Class] <{1D63232D-4F15-4A42-890D-EE617AA1537D}> [(Verified)Alibaba software (Shanghai) Corporation, 1.0.0.1] [InstallHelper Class] <{1DABF8D5-8430-4985-9B7F-A30E53D709B3}> [(Verified)Tencent, 8.13.4822.0] [iTrusPTA Class] <{1E0DFFCF-27FF-4574-849B-55007349FEDA}> [(Verified)Copyright 2001, 2, 5, 1, 509] [QQCPHelper.CPAdder] <{23752AA7-CAD7-40C2-99EE-7A9CD3C20C6D}> [(Verified)Tencent, 1, 50, 1720, 0] [WebActivater Control] <{3D8F74EE-8692-4F8F-B8D2-7522E732519E}> [QQ, 1, 0, 0, 4] [Thunder Agent Class] <{485463B7-8FB2-4B3B-B29B-8B919B0EACCE}> [(Verified)Thunder Networking Technologies,LTD, 6, 0, 4, 42] [EditCtrl Class] <{488A4255-3236-44B3-8F27-FA1AECAA8844}> [(Verified)Copyright 2008, 2, 4, 0, 1] [UDownAgentObj Control] <{528D9365-F531-4A73-82B1-DC54B7DD692D}> [, 1.0.0.0] [IEPwdBankBHO Class] <{56CBB761-DA41-4E31-B270-B13B4B0A61D0}> [(Verified)Egis Technology Inc. , 7, 0, 0, 6] [WangWangX Class] <{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B}> [(Verified)Alibaba software (Shanghai) Corporation., 1.0.0.1] [PowerPlayer Control] <{5EC7C511-CD0F-42E6-830C-1BD9882F3458}> [(Verified)PPStream Inc., 2,3,550,2220] [InfoSecNetSign Class] <{62B938C4-4190-4F37-8CF0-A92B0A91CC77}> [(Verified)Infosec Technologies Co., Ltd., 1, 8, 24, 4] [PhotoDrawEx Class] <{64411CAF-1744-414B-8743-5C7DCA81D4E2}> [(Verified)Tencent, 2, 25, 0, 0] [XMP Class] <{6483F145-A768-4C41-AACC-52D4D7845851}> [Xunlei Networking Technologies,LTD, 2, 1, 8, 85] [AddTask Class] <{6A19C29D-ED45-4483-8999-9F939C8161F2}> [] [CertEnroll Class] <{7978461C-CC22-48F2-BC69-02220D3E101D}> [(Verified)iTruschina Co., Ltd., 1, 0, 0, 6] [CTSWebSiteMon Class] <{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}> [] [XDownloaddManager Class] <{802F530B-A8F6-4631-AE49-6BACAAC6373E}> [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120] [360SafeLive] <{87515F61-A66C-4319-A0E0-D416CB8059E3}> [(Verified)360.cn, 2, 0, 0, 1006] [worker Class] <{8C985B8D-4A57-4F07-A2FB-6A5CF3EC46BA}> [(Verified)新浪网技术(中国)有限公司, 1.0.0.1] [OFrameObject Class] <{9701758C-4373-482E-B13C-776C048EC890}> [(Verified)ShenZhen Thunder Networking Technologies Ltd., 2, 3, 7104, 325] [UnionPin Class] <{A4D72433-2E43-42BD-BEFC-434823AF93CE}> [(Verified)江南科友, 1, 0, 1, 0] [APlayer Control] <{A9322148-C691-4B9D-91FC-B9C461DBE9DD}> [(Verified)ShenZhen Thunder Networking Technologies, LTD, 2.2.0.338] [CCTVUpdateInstall] <{AC414988-E5BB-4C2C-873B-EA53D2F3D23A}> [(Verified)CCTV International Networks Co.,Ltd, 1, 0, 0, 9] [SafeMon Class] <{B69F34DD-F0F9-42DC-9EDD-957187DA688D}> [(Verified)360.cn, 6, 8, 1, 1030] [CWWPicUploadCtrl Class] <{B70611FB-F6AD-418e-B748-095357DDF544}> [(Verified)Alibaba software (Shanghai) Corporation, 1.0.5] [FTNUpload Class] <{BDEACC50-F56D-4D60-860F-CF6ED1766D65}> [(Verified)Tencent, 1, 0, 0, 11] [KooPlayer Control] <{C728DAB8-FDF5-4CD7-89DD-879D25794C77}> [(Verified)CCTV.COM, 1, 0, 0, 112] [QQPlayerCtrl Class] <{CD108273-D434-43E6-AA90-1469F97EB398}> [(Verified)Tencent, 3, 2, 165, 710] [RealPlayer G2 Control] <{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}> [(Verified)RealNetworks, Inc., 6.0.9.2568] [Shockwave Flash Object] <{D27CDB6E-AE6D-11CF-96B8-444553540000}> [(Verified)Adobe Systems, Inc., 10,2,153,1] [xoliimpl Class] <{DD5BF6D1-6663-47E0-9DFA-5C343CAF178E}> [(Verified)深圳市迅雷技术有限公司, 1, 3, 0, 12] [Microsoft Silverlight] <{DFEAF541-F3E1-4C24-ACAC-99C30715084A}> [ Microsoft Corporation, 4.0.50401.0] [Xunlei Digital Video DRM Control] <{E577393C-3468-4911-9DA0-484C3F4C47D7}> [版权所有 (C) 2010 深圳市迅雷网络技术有限公司, 1, 0, 0, 36] [PasswordEditCtrl Class] <{E787FD25-8D7C-4693-AE67-9406BC6E22DF}> [(Verified)腾讯科技(深圳)有限公司, 1, 1, 0, 5] [SSOForPTLogin2 Class] <{EAAED308-7322-4B9B-965E-171933ADD473}> [(Verified)(c) Tencent Co. Ltd. All rights reserved., 1, 0, 1, 4] [TimwpDll.TimwpCheck] <{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4}> [(Verified)Tencent, 1, 50, 1720, 0] [XPPlayer Class] <{F3E70CEA-956E-49CC-B444-73AFE593AD7F}> [(Verified)Xunlei Networking Technologies,LTD, 2, 0, 5835, 191] [webmod Class] <{FEE3C8C5-9BEA-4079-AB36-63ECABFC7392}> [(Verified)Alipay.com Co.,Ltd, 2, 0, 0, 1] ================================================================ 服务 [ABC V3.2 / ABCMonitor][Running/Auto Start] [Agricultural Bank of China, 3, 2, 0, 0] [HID Input Service / HidServ][Stopped/Auto Start] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll"> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [360 杀毒全盘扫描辅助服务 / scan][Stopped/Manual Start] <%SystemRoot%\System32\svchost.exe -k bdx --> "C:\Program Files\360\360sd\Scan.dll"> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111) | S.C. BitDefender S.R.L, 12, 0, 53, 0] [360 杀毒实时防护服务 / 360rp][Running/Auto Start] <"C:\Program Files\360\360sd\360rp.exe"> [(Verified)360.cn, 1, 2, 0, 1317] [EgisTec Service / EgisTec Service][Stopped/Manual Start] <"C:\Program Files\EgisTec BioExcess\EgisService.exe"> [(Verified)Egis Technology Inc. , 7, 0, 0, 124] [FsUsbExService / FsUsbExService][Running/Auto Start] [(Verified)Teruten, 1, 0, 0, 8] [NVIDIA Display Driver Service / NVSvc][Stopped/Manual Start] <%SystemRoot%\system32\nvsvc32.exe> [(Verified)NVIDIA Corporation, 6.14.11.7597] [Sandboxie Service / SbieSvc][Running/Auto Start] [(Verified)tzuk, 3.28] [LiveDeamon / sina_live_deamon][Running/Auto Start] <%SystemRoot%\System32\svchost.exe -k sina_live_deamon --> "C:\Program Files\sina\Sina_live\2010\live_deamon.dll"> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111) | (Verified)新浪网技术(中国)有限公司, 1, 0, 0, 1] [IdeaPad HDD APS Logging Service / TPHDEXLGSVC][Running/Auto Start] [(Verified)Lenovo., 1.60.0.3] [主动防御 / ZhuDongFangYu][Running/Auto Start] <"C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe"> [(Verified)360.cn, 3, 2, 2, 1005] ================================================================ 驱动 [AlcwDrv / AlcwDrv][Stopped/Manual Start] <\??\C:\Program Files\Super Rabbit\MagicSet\killvirus\AlcwDrv.sys> [] [EagleNT / EagleNT][Stopped/Manual Start] <\??\C:\WINDOWS\system32\drivers\EagleNT.sys> [] [EagleXNt / EagleXNt][Stopped/Manual Start] <\??\C:\WINDOWS\system32\drivers\EagleXNt.sys> [] [SATALink driver accelerator / SiFilter][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\SiWinAcc.sys> [Silicon Image, Inc., 1.0.0.11] [sptd / sptd][Running/Boot Start] [N/A] [System Restore Filter Driver / sr][Stopped/Boot Start] [] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_qfe.080620-1309)] [viamraid / viamraid][Stopped/Boot Start] [VIA Technologies inc,.ltd, 5.1.6000.581] [VirtualDrive / VirtualDrive][Stopped/Auto Start] <\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\RarSFX0\vdd-x86.sys> [] [360netmon / 360netmon][Running/System Start] <\??\C:\WINDOWS\system32\drivers\360netmon.sys> [(Verified)360.cn, 2.1.9.1001] [360SelfProtection / 360SelfProtection][Running/System Start] [(Verified)360安全中心, 1, 0, 0, 1054] [Lenovo Virtual Power Controller Driver / ACPIVPC][Running/Manual Start] [(Verified)Lenovo Corporation, 5.1.2601.0] [ati2mtag / ati2mtag][Stopped/Manual Start] [(Verified)ATI Technologies Inc., 6.14.10.6462] [Broadcom NetXtreme Gigabit Ethernet / b57w2k][Stopped/Manual Start] [(Verified)Broadcom Corporation, 12.0.1.2 (cbuild.04062009-2006,b57nd5x-rel_12.0-lhdepot1106.CL-67576)] [BAPIDRV / BAPIDRV][Running/System Start] <\??\C:\WINDOWS\system32\drivers\BAPIDRV.SYS> [(Verified)360.cn, 1.0.0.1024] [Broadcom 802.11 网络适配器驱动程序 / BCM43XX][Stopped/Manual Start] [(Verified)Broadcom Corp., 4.170.25.12] [bdfsfltr / bdfsfltr][Running/System Start] [(Verified)BitDefender S.R.L. Bucharest, ROMANIA, 0.4.182.4891, RELEASE, built by: WinDDK] [Conexant UAA Function Driver for High Definition Audio Service / CnxtHdAudService][Running/Manual Start] [(Verified)Conexant Systems Inc., 3.49.0.0 built by: WinDDK] [Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start] [(Verified)Dritek System Inc., 1, 2, 1, 420] [EfiSystemMon / EfiMon][Running/System Start] [(Verified)奇虎网, 1, 0, 0, 1007] [FsUsbExDisk / FsUsbExDisk][Running/Manual Start] <\??\C:\WINDOWS\system32\FsUsbExDisk.SYS> [(Verified)N/A] [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start] [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK] [HookPort / HookPort][Running/Boot Start] [(Verified)360安全中心, 1, 0, 0, 1018] [HSFHWAZL / HSFHWAZL][Running/Manual Start] [(Verified)Conexant Systems, Inc., 7.73.00 built by: WinDDK] [HSF_DPV / HSF_DPV][Running/Manual Start] [(Verified)Conexant Systems, Inc., 7.73.00 built by: WinDDK] [ialm / ialm][Stopped/Manual Start] [(Verified)Intel Corporation, 6.14.10.4964] [Intel AHCI Controller / iaStor][Running/Boot Start] [(Verified)Intel Corporation, 8.2.3.1001] [Intel AHCI Controller 8 / iaStor8][Running/Boot Start] [(Verified)Intel Corporation, 8.9.0.1023] [Broadcom NetLink (TM) Gigabit Ethernet / k57w2k][Running/Manual Start] [(Verified)Broadcom Corporation, 11.7.0.0 (cbuild.01292008-2002,b57nd5x-main-lhdepot1106.CL-43997)] [mdmxsdk / mdmxsdk][Running/Auto Start] [(Verified)Conexant, 1.0.2.012] [Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit / NETw5x32][Running/Manual Start] [(Verified)Intel Corporation, 12.4.0.21] [nv / nv][Running/Manual Start] [(Verified)NVIDIA Corporation, 6.14.11.7597] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148)] [Quantum DeepScanner Servers / qutmdserv][Running/System Start] <\??\C:\WINDOWS\system32\drivers\qutmdrv.sys> [(Verified)360.cn, 6.7.0.1010] [qutmipc / qutmipc][Running/System Start] <\??\C:\WINDOWS\system32\drivers\qutmipc.sys> [(Verified)360.cn, 6.8.0.1001] [rimmptsk / rimmptsk][Running/Auto Start] [(Verified)REDC, 6.00.03.05] [rimsptsk / rimsptsk][Running/Auto Start] [(Verified)REDC, 6.00.01.11] [SbieDrv / SbieDrv][Running/Manual Start] <\??\C:\Progra~1\360\SbieDrv.sys> [(Verified)tzuk, 3.28] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086] [Shockprf / Shockprf][Running/Boot Start] [(Verified)Lenovo., 1.60.0.3] [SAMSUNG USB Composite Device V2 driver (WDM) / sscebus][Stopped/Manual Start] [(Verified)MCCI Corporation, V5.02] [SAMSUNG Mobile Modem V2 Filter / sscemdfl][Stopped/Manual Start] [(Verified)MCCI Corporation, V5.02] [SAMSUNG Mobile Modem V2 Drivers / sscemdm][Stopped/Manual Start] [(Verified)MCCI Corporation, V5.02] [Synaptics TouchPad Driver / SynTP][Running/Manual Start] [(Verified)Synaptics, Inc., 11.1.1 03Apr08] [TC USB Kernel Driver / TcUsb][Running/Manual Start] [(Verified)UPEK Inc., 1.9.2.101] [TPDIGIMN / TPDIGIMN][Running/Boot Start] [(Verified)Lenovo., 1.60.0.3 built by: WinDDK] [winachsf / winachsf][Running/Manual Start] [(Verified)Conexant Systems, Inc., 7.73.00 built by: WinDDK] ================================================================ 活动进程 [PID: 1112 / SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\EgisTec BioExcess\EgisNotify.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 25] C:\Program Files\EgisTec BioExcess\EgisUtility.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 51] C:\Program Files\EgisTec BioExcess\CryptoAPI.dll [(Verified)Egis Technology Inc., 3, 1, 62, 32] C:\Program Files\EgisTec BioExcess\EgisFactorProxy.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 95] C:\Program Files\EgisTec BioExcess\EgisFeature.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 27] C:\Program Files\EgisTec BioExcess\LibFrame.dll [(Verified)Egis Technology Inc., 1, 6, 5, 6] C:\Program Files\EgisTec BioExcess\FrameUtility.dll [(Verified)Egis Technology Inc., 1, 6, 2, 3] C:\Program Files\EgisTec BioExcess\EgisAuthShell.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 21] C:\Program Files\EgisTec BioExcess\EgisFinger.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 32] C:\WINDOWS\system32\NBMatS1SDK.dll [(Verified)EgisTec Inc., 6.0.7.0] C:\WINDOWS\system32\psqlpwd.dll [(Verified)UPEK Inc., 5.8.1.4199] C:\Program Files\Lenovo\LenovoSecuritySolution FP\homefus2.dll [(Verified)UPEK Inc., 5.8.1.4199] C:\Program Files\Lenovo\LenovoSecuritySolution FP\infql2.dll [(Verified)UPEK Inc., 5.8.1.4199] C:\Program Files\Lenovo\LenovoSecuritySolution FP\homepass.dll [(Verified)UPEK Inc., 5.8.1.4199] C:\Program Files\Lenovo\LenovoSecuritySolution FP\bio.dll [(Verified)UPEK Inc., 5.8.1.4199] C:\Program Files\Lenovo\LenovoSecuritySolution FP\qlbase.dll [(Verified)UPEK Inc., 5.8.1.4199] [PID: 1168 / SYSTEM] C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\EgisTec BioExcess\EgisPwdFilter.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 24] C:\Program Files\EgisTec BioExcess\EgisUtility.dll [(Verified)Egis Technology Inc. , 7, 0, 0, 51] C:\Program Files\EgisTec BioExcess\CryptoAPI.dll [(Verified)Egis Technology Inc., 3, 1, 62, 32] C:\Program Files\EgisTec BioExcess\LoggerUtility.dll [(Verified)Egis Technology Inc. , 1, 0, 0, 15] C:\WINDOWS\system32\psqlpwd.dll [(Verified)UPEK Inc., 5.8.1.4199] C:\Program Files\Lenovo\LenovoSecuritySolution FP\homefus2.dll [(Verified)UPEK Inc., 5.8.1.4199] C:\Program Files\Lenovo\LenovoSecuritySolution FP\infql2.dll [(Verified)UPEK Inc., 5.8.1.4199] [PID: 1320 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1408 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1448 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1560 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1588 / SYSTEM] C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe [(Verified)360.cn, 3, 2, 2, 1005] C:\Program Files\360\360safe\SoftMgr\360SoftMgrS.dll [(Verified)360.cn, 2, 1, 6, 1072] C:\Program Files\360\360safe\deepscan\CloudCom2.dll [(Verified)360.cn, 3, 2, 7, 1015] C:\Program Files\360\360safe\deepscan\heavygate.dll [360.cn, 3, 7, 4, 0] C:\Program Files\360\360safe\deepscan\qutmload.dll [(Verified)360.cn, 6, 8, 0, 1004] [PID: 1928 / SYSTEM] C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.6024 (xpsp_sp3_gdr.100817-1626)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\hpzll5ha.dll [Hewlett-Packard Company, 61.071.246.00] C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp5ha.dll [Hewlett-Packard Corporation, 61.071.246.00] [PID: 876 / SYSTEM] C:\WINDOWS\system32\ABC\ABC SAFE CSP v3.2\WDKeyMonitorABC.exe [Agricultural Bank of China, 3, 2, 0, 0] C:\WINDOWS\system32\ABC\ABC SAFE CSP v3.2\TokenMgr.dll [Agricultural Bank of China, 3, 6, 3, 2] C:\WINDOWS\system32\ABC\ABC SAFE CSP v3.2\WDAlg.DLL [ABC C0., Ltd., 3, 5, 12, 20] C:\WINDOWS\system32\ABC\ABC SAFE CSP v3.2\wdkmgr.dll [Watchdata, 1, 0, 0, 39] C:\WINDOWS\system32\ABC\ABC SAFE CSP v3.2\wdpkcs.dll [ABC, 3, 6, 2, 15] C:\WINDOWS\system32\ABC\ABC SAFE CSP v3.2\WDCSPUI.dll [ Beijing WatchData System Co., Ltd., 3, 5, 12, 20] C:\WINDOWS\system32\ABC\ABC SAFE CSP v3.2\UIResC3.DLL [Copy Right (C) 2005, 3, 5, 12, 14] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 944 / SYSTEM] C:\WINDOWS\system32\FsUsbExService.Exe [(Verified)Teruten, 1, 0, 0, 8] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1008 / SYSTEM] C:\Progra~1\360\SbieSvc.exe [(Verified)tzuk, 3.28] C:\Progra~1\360\SbieDll.dll [(Verified)tzuk, 3.28] [PID: 1132 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] c:\program files\sina\sina_live\2010\live_deamon.dll [(Verified)新浪网技术(中国)有限公司, 1, 0, 0, 1] c:\program files\sina\sina_live\2010\UCLiveCore.dll [(Verified)北京新浪信息技术有限公司, 3, 0, 4, 8] [PID: 1556 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1804 / SYSTEM] C:\WINDOWS\System32\TPHDEXLG.exe [(Verified)Lenovo., 1.60.0.3] [PID: 648 / LOCAL SERVICE] C:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 2256 / 子忆] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360safe\safemon\safemon.dll [(Verified)360.cn, 6, 8, 1, 1030] C:\Program Files\Lenovo\Energy Management\HookLib.dll [N/A] [PID: 2416 / 子忆] C:\Program Files\Lenovo\Energy Management\utilty.exe [Lenovo(Beijing)Limited, 3.0.0.9] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\Lenovo\Energy Management\kbdhook.dll [N/A] [PID: 2428 / 子忆] C:\Program Files\Lenovo\Energy Management\Energy Management.exe [Lenovo (Beijing) Limited, 3, 0, 1, 2] C:\Program Files\Lenovo\Energy Management\HookLib.dll [N/A] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 2436 / 子忆] C:\Program Files\360\360safe\safemon\360Tray.exe [(Verified)360.cn, 7, 7, 0, 1007] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360safe\deepscan\heavygate.dll [360.cn, 3, 7, 4, 0] C:\Program Files\360\360safe\ipc\ipcservice.dll [(Verified)360.CN, 6, 8, 2, 1005] C:\Program Files\360\360safe\ipc\fileMgr.dll [(Verified)360.cn, 6, 8, 2, 1009] C:\Program Files\360\360safe\ipc\yhregd.dll [(Verified)360.cn, 6, 8, 2, 1007] C:\Program Files\360\360safe\ipc\appd.dll [(Verified)360.cn, 6, 8, 2, 1015] C:\Program Files\360\360safe\safemon\360compro.dll [(Verified)360.cn, 6, 9, 0, 1001] C:\Program Files\360\360safe\safemon\360webpro.dll [(Verified)360.CN, 1, 3, 4, 1001] C:\Program Files\360\360safe\safemon\360traylive.dll [(Verified)360安全中心, 7, 1, 0, 1004] C:\Program Files\360\360safe\safemon\360procmon.dll [(Verified)360.CN, 6, 8, 2, 1007] C:\Program Files\360\360safe\safemon\SelfProtectAPI2.dll [(Verified)360.CN, 6, 8, 0, 1006] C:\Program Files\360\360safe\safemon\360SafeCamera.tpi [(Verified)360.cn, 1, 0, 0, 1010] C:\Program Files\360\360safe\safemon\360safemonpro.tpi [(Verified)360.cn, 1, 4, 0, 1060] C:\Program Files\360\360safe\safemon\DsTpi.tpi [(Verified)360.cn, 1, 0, 0, 2001] C:\Program Files\360\360safe\safemon\netm.tpi [(Verified)360.cn, 3, 3, 9, 1001] C:\Program Files\360\360safe\safemon\netmon.tpi [(Verified)360.cn, 2, 1, 7, 1001] C:\Program Files\360\360safe\safemon\obTracer.tpi [(Verified)360.cn, 6, 8, 0, 1001] C:\Program Files\360\360safe\deepscan\qutmload.dll [(Verified)360.cn, 6, 8, 0, 1004] C:\Program Files\360\360safe\ipc\qutmipc.dll [(Verified)360.cn, 6, 8, 0, 1002] C:\Program Files\360\360safe\deepscan\BAPI.dll [(Verified)360.cn, 2.0.0.1013] C:\Program Files\360\360safe\SafeLive.dll [(Verified)360.cn, 2, 0, 0, 1006] C:\Program Files\360\360safe\pdown.dll [(Verified)360.cn, 1, 2, 0, 1030] C:\Program Files\360\360safe\360Common.dll [(Verified)360.cn, 7, 3, 0, 1021] C:\Program Files\360\360safe\safemon\safemon.dll [(Verified)360.cn, 6, 8, 1, 1030] C:\Program Files\360\360safe\safemon\urlproc.dll [(Verified)360.cn, 1, 2, 8, 1020] C:\Program Files\360\360safe\safemon\urlprocnet.dll [(Verified)360.cn, 1, 2, 4, 1001] C:\Program Files\360\360safe\360ver.dll [(Verified)奇虎网, 7, 7, 0, 2001] C:\Program Files\360\360safe\netmon\360netctrl.dll [(Verified)360.cn, 2, 2, 9, 1001] C:\Program Files\360\360safe\deepscan\deepscan.dll [(Verified)360.cn, 3, 2, 7, 1002] C:\Program Files\360\360safe\deepscan\360UC.dll [(Verified)360.cn, 1, 0, 0, 1002] C:\Program Files\360\360safe\ipc\PatchCheck.dll [(Verified)360.cn, 1, 1, 0, 1010] C:\Program Files\360\360safe\deepscan\Cloudcom2.dll [(Verified)360.cn, 3, 2, 7, 1015] C:\Program Files\360\360safe\efiproc.dll [(Verified)奇虎360安全卫士, 1, 0, 0, 1005] C:\Program Files\360\360safe\LiveUpd360.dll [(Verified)360.cn, 1, 2, 0, 1052] C:\Program Files\360\360safe\360net.dll [(Verified)360.cn, 1, 1, 18, 1026] C:\Program Files\360\360safe\360P2SP.dll [(Verified)360.cn, 1, 3, 0, 1020] [PID: 2444 / 子忆] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 2476 / 子忆] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [(Verified)Samsung Electronics Co., Ltd., 2, 0, 0, 100] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\Samsung\Kies\External\DeviceModules\UPNPDevice_Kies.dll [Windows (R) Codename Longhorn DDK provider, 6.0.6000.16384] [PID: 2484 / 子忆] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [Copyright © 2011, 1.0.0.0] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\cece9d0256e18427b64587ba690605d4\mscorlib.ni.dll [Microsoft Corporation, 4.0.30319.1 (RTMRel.030319-0100)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\7169c473071af03077b1cd2a9c1dbcbe\System.ni.dll [Microsoft Corporation, 4.0.30319.1 built by: RTMRel] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\d15416880518cf82bf8c05c1ba0886c5\WindowsBase.ni.dll [Microsoft Corporation, 4.0.30319.1 built by: RTMRel] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\378372b4c3cb479e66a8ab54ff7dc7cc\PresentationCore.ni.dll [Microsoft Corporation, 4.0.30319.1 built by: RTMRel] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\cc20121f1f114a351be229d2772d5ca5\PresentationFramework.ni.dll [Microsoft Corporation, 4.0.30319.1] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\9bd180000f33bfa4989b03d0e74c1022\System.Xaml.ni.dll [Microsoft Corporation, 4.0.30319.1 built by: RTMRel] C:\Documents and Settings\Administrator\Local Settings\Temp\e3c74ee6-7482-4280-b9c3-f233b390296e\CliSecureRT.dll [5, 2, 0, 2] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\4a9f25bff4bb74c9b6a21091923307d2\System.Core.ni.dll [Microsoft Corporation, 4.0.30319.1 built by: RTMRel] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\6bcc92b8ce5e112f4bb0c54920c8638f\PresentationFramework.Luna.ni.dll [Microsoft Corporation, 4.0.30319.1 built by: RTMRel] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\1c015da46834c06215381dba5365af39\System.Runtime.Remoting.ni.dll [Microsoft Corporation, 4.0.30319.1 (RTMRel.030319-0100)] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\6f67cb9ee4df908abddef7c542bf4bc2\System.Management.ni.dll [Microsoft Corporation, 4.0.30319.1 (RTMRel.030319-0100)] [PID: 2540 / 子忆] C:\Program Files\360\360sd\360sd.exe [(Verified)360.cn, 1, 2, 0, 1317] C:\Program Files\360\360sd\QTQuart.dll [(Verified)360.cn, 1, 1, 0, 1203] C:\Program Files\360\360sd\CrashReport.dll [(Verified)360安全中心, 1, 0, 0, 1074] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360sd\DmRule.dll [(Verified)360.cn, 1, 2, 0, 1315] C:\Program Files\360\360sd\sqlite3.dll [(Verified)N/A] C:\Program Files\360\360sd\360MalwareSection.dll [(Verified)360.cn, 3, 2, 1, 1003] C:\Program Files\360\360sd\bapi.dll [(Verified)360.cn, 1.0.0.1010] C:\Program Files\360\360sd\heavygate.dll [360.cn, 3, 6, 21, 0] [PID: 3316 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 3712 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 4048 / SYSTEM] C:\WINDOWS\system32\wbem\wmiprvse.exe [(Verified)Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 3576 / 子忆] C:\Program Files\SogouInput\5.1.1.4954\ImeUtil.exe [(Verified)Sogou.com Inc., 5.1.1.4954] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\SogouInput\5.1.1.4954\ZipLib.dll [(Verified)Sogou.com Inc., 1.0.0.0000] [PID: 3256 / 子忆] C:\Program Files\360\360safe\LiveUpdate360.exe [(Verified)360.cn, 1, 2, 0, 1038] C:\Program Files\360\360safe\LiveUpd360.dll [(Verified)360.cn, 1, 2, 0, 1052] C:\Program Files\360\360safe\360net.dll [(Verified)360.cn, 1, 1, 18, 1026] C:\Program Files\360\360safe\360P2SP.dll [(Verified)360.cn, 1, 3, 0, 1020] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 3896 / SYSTEM] C:\Program Files\360\360sd\360rp.exe [(Verified)360.cn, 1, 2, 0, 1317] C:\Program Files\360\360sd\Router.dll [(Verified)360安全中心, 1, 0, 0, 1069] C:\Program Files\360\360sd\BDFLTLIB.DLL [N/A] C:\Program Files\360\360sd\SCAN.DLL [S.C. BitDefender S.R.L, 12, 0, 53, 0] C:\Program Files\360\360sd\Wrapper.dll [(Verified)360安全中心, 1, 0, 0, 1] C:\Program Files\360\360sd\QTQuart.dll [(Verified)360.cn, 1, 1, 0, 1203] C:\Program Files\360\360sd\cloudcom2.dll [(Verified)360.cn, 3, 2, 3, 3002] C:\Program Files\360\360sd\wlist.dll [(Verified)360安全中心, 3, 0, 0, 1004] C:\Program Files\360\360sd\bapi.dll [(Verified)360.cn, 1.0.0.1010] C:\Program Files\360\360sd\smartscn.dll [(Verified)BitDefender S.R.L., 12.0.0.11] C:\PROGRA~1\360\360sd\bdcore.dll [(Verified)BitDefender, 11, 0, 0, 42] C:\Program Files\360\360sd\heavygate.dll [360.cn, 3, 6, 21, 0] C:\PROGRA~1\360\360sd\trufos.dll [(Verified)N/A] C:\PROGRA~1\360\360sd\avxdisk.dll [(Verified)BitDefender, 1, 0, 0, 1] C:\Program Files\360\360sd\CrashReport.dll [(Verified)360安全中心, 1, 0, 0, 1074] [PID: 3204 / 子忆] c:\program files\internet explorer\iexplore.exe [(Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360safe\safemon\safemon.dll [(Verified)360.cn, 6, 8, 1, 1030] C:\Program Files\360\360safe\safemon\iNetSafe.dll [(Verified)360.cn, 1, 0, 2, 1009] C:\Program Files\360\360safe\safemon\LoadWDUI.dll [(Verified)360.cn, 1, 0, 0, 1019] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 5.1.1.4954] C:\Program Files\SogouInput\5.1.1.4954\Resource.dll [(Verified)Sogou.com Inc., 5.1.1.4954] [PID: 412 / 子忆] c:\program files\internet explorer\iexplore.exe [(Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360safe\safemon\safemon.dll [(Verified)360.cn, 6, 8, 1, 1030] C:\Program Files\360\360safe\safemon\Adfilter.dll [(Verified)360.cn, 1, 0, 0, 1130] C:\Program Files\360\360safe\safemon\iNetSafe.dll [(Verified)360.cn, 1, 0, 2, 1009] C:\Program Files\360\360safe\safemon\urlproc.dll [(Verified)360.cn, 1, 2, 8, 1020] C:\Program Files\360\360safe\safemon\urlprocnet.dll [(Verified)360.cn, 1, 2, 4, 1001] C:\Program Files\360\360safe\deepscan\heavygate.dll [360.cn, 3, 7, 4, 0] C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll [Thunder Networking Technologies,LTD, 1.0.5.34] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.6030.0] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.6030.0] C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120] C:\Program Files\360\360safe\safemon\sepro.dll [(Verified)360.cn, 1, 2, 0, 1004] C:\WINDOWS\system32\Macromed\Flash\Flash10o.ocx [(Verified)Adobe Systems, Inc., 10,2,153,1] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 5.1.1.4954] C:\Program Files\SogouInput\5.1.1.4954\Resource.dll [(Verified)Sogou.com Inc., 5.1.1.4954] C:\Program Files\360\360safe\safemon\LoadWDUI.dll [(Verified)360.cn, 1, 0, 0, 1019] [PID: 724 / 子忆] c:\program files\internet explorer\iexplore.exe [(Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360safe\safemon\safemon.dll [(Verified)360.cn, 6, 8, 1, 1030] C:\Program Files\360\360safe\safemon\Adfilter.dll [(Verified)360.cn, 1, 0, 0, 1130] C:\Program Files\360\360safe\safemon\iNetSafe.dll [(Verified)360.cn, 1, 0, 2, 1009] C:\Program Files\360\360safe\safemon\urlproc.dll [(Verified)360.cn, 1, 2, 8, 1020] C:\Program Files\360\360safe\safemon\urlprocnet.dll [(Verified)360.cn, 1, 2, 4, 1001] C:\Program Files\360\360safe\deepscan\heavygate.dll [360.cn, 3, 7, 4, 0] C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll [Thunder Networking Technologies,LTD, 1.0.5.34] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.6030.0] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.6030.0] C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120] C:\Program Files\360\360safe\safemon\sepro.dll [(Verified)360.cn, 1, 2, 0, 1004] [PID: 3968 / 子忆] c:\program files\internet explorer\iexplore.exe [(Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360safe\safemon\safemon.dll [(Verified)360.cn, 6, 8, 1, 1030] C:\Program Files\360\360safe\safemon\Adfilter.dll [(Verified)360.cn, 1, 0, 0, 1130] C:\Program Files\360\360safe\safemon\iNetSafe.dll [(Verified)360.cn, 1, 0, 2, 1009] C:\Program Files\360\360safe\safemon\urlproc.dll [(Verified)360.cn, 1, 2, 8, 1020] C:\Program Files\360\360safe\safemon\urlprocnet.dll [(Verified)360.cn, 1, 2, 4, 1001] C:\Program Files\360\360safe\deepscan\heavygate.dll [360.cn, 3, 7, 4, 0] C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll [Thunder Networking Technologies,LTD, 1.0.5.34] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.6030.0] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.6030.0] C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120] C:\Program Files\360\360safe\safemon\sepro.dll [(Verified)360.cn, 1, 2, 0, 1004] C:\Program Files\360\360safe\safemon\LoadWDUI.dll [(Verified)360.cn, 1, 0, 0, 1019] [PID: 4040 / 子忆] D:\Program Files\arswp\ArSwp3.exe [(Verified)Windows 清理助手, 3.1.4.1212] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\360\360safe\safemon\safemon.dll [(Verified)360.cn, 6, 8, 1, 1030] C:\WINDOWS\system32\Macromed\Flash\Flash10o.ocx [(Verified)Adobe Systems, Inc., 10,2,153,1] ================================================================ 文件关联 [.rar] <"C:\Program Files\WinRAR\WinRAR.exe" "%1"> [N/A] [.ico] <"d:\Program Files\Meitu\KanKan\KanKan\KanKan.exe" "%1"> [(Verified)版权所有 (C) 2008, 1, 3, 1, 434] [.ram] <"C:\Program Files\StormII\Storm.exe" /play "%1"> [(Verified)北京暴风网际科技有限公司, 3, 11, 2, 22] [.gif] <"d:\Program Files\Meitu\KanKan\KanKan\KanKan.exe" "%1"> [(Verified)版权所有 (C) 2008, 1, 3, 1, 434] [.bmp] <"d:\Program Files\Meitu\KanKan\KanKan\KanKan.exe" "%1"> [(Verified)版权所有 (C) 2008, 1, 3, 1, 434] [.jpg] <"d:\Program Files\Meitu\KanKan\KanKan\KanKan.exe" "%1"> [(Verified)版权所有 (C) 2008, 1, 3, 1, 434] [.mod] <"C:\Program Files\StormII\Storm.exe" /play "%1"> [(Verified)北京暴风网际科技有限公司, 3, 11, 2, 22] ================================================================ Autorun.Inf ================================================================ Winsock提供者 ================================================================ 隐藏进程 ================================================================ 可疑文件 ================================================================ HOSTS [/CODE]