"HKCU\Software\Microsoft\Windows\CurrentVersion\Group Policy\Scripts\Logon" "" "" "" "2020/5/7 9:24" "" + "Sanfor SSO Policy" "" "" "File not found: \\juneyaoair.com\SysVol\juneyaoair.com\Policies\{89191F69-6DAE-42C5-8B45-6B82E9D05679}\User\Scripts\Logon\logon.exe" "" "" + "Sanfor SSO Policy" "" "" "File not found: \\juneyaoair.com\SysVol\juneyaoair.com\Policies\{89191F69-6DAE-42C5-8B45-6B82E9D05679}\User\Scripts\Logon\logon.exe" "" "" "HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\AlternateShell" "" "" "" "2009/7/14 12:49" "" + "cmd.exe" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2017/2/22 9:15" "" + "RTHDVCPL" "Realtek高清晰音频管理器" "(Verified) Realtek Semiconductor Corp." "c:\program files\realtek\audio\hda\ravcpl64.exe" "2016/12/27 13:49" "" "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2021/8/24 16:13" "" + "360Safetray" "360安全卫士 安全防护中心模块" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\safemon\360tray.exe" "2021/5/28 15:18" "" "C:\Users\hangcaigongyong\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "2020/10/29 16:45" "" + "EvernoteClipper.lnk" "Evernote Clipper" "(Verified) Evernote Corporation" "c:\users\hangcaigongyong\appdata\local\apps\evernote\evernote\evernoteclipper.exe" "2018/6/20 4:26" "" + "logon.exe" "应用程序" "(Verified) Sangfor Technologies Co.,Ltd" "c:\users\hangcaigongyong\appdata\roaming\microsoft\windows\start menu\programs\startup\logon.exe" "2015/8/11 17:35" "" "HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "2017/5/16 10:08" "" + "Browser Customizations" "IEAK branding" "(Verified) Microsoft Corporation" "c:\windows\system32\iedkcs32.dll" "2011/3/8 20:37" "" + "n/a" "Microsoft .NET IE SECURITY REGISTRATION" "(Verified) Microsoft Corporation" "c:\windows\system32\mscories.dll" "2009/6/4 11:59" "" + "Themes Setup" "Microsoft(C) 注册服务器" "(Verified) Microsoft Windows" "c:\windows\system32\regsvr32.exe" "2009/7/14 8:14" "" + "Windows Desktop Update" "Microsoft(C) 注册服务器" "(Verified) Microsoft Windows" "c:\windows\system32\regsvr32.exe" "2009/7/14 8:14" "" "HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "2017/2/22 9:51" "" + "Browser Customizations" "IEAK branding" "(Verified) Microsoft Corporation" "c:\windows\syswow64\iedkcs32.dll" "2011/3/8 20:47" "" + "n/a" "Microsoft .NET IE SECURITY REGISTRATION" "(Verified) Microsoft Corporation" "c:\windows\syswow64\mscories.dll" "2010/9/29 11:53" "" + "Themes Setup" "Microsoft(C) 注册服务器" "(Verified) Microsoft Windows" "c:\windows\syswow64\regsvr32.exe" "2009/7/14 7:58" "" + "Windows Desktop Update" "Microsoft(C) 注册服务器" "(Verified) Microsoft Windows" "c:\windows\syswow64\regsvr32.exe" "2009/7/14 7:58" "" "HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" "" "2017/2/22 10:11" "" + "application/octet-stream" "Microsoft .NET Runtime Execution Engine" "(Verified) Microsoft Corporation" "c:\windows\system32\mscoree.dll" "2010/3/5 11:05" "" + "application/x-complus" "Microsoft .NET Runtime Execution Engine" "(Verified) Microsoft Corporation" "c:\windows\system32\mscoree.dll" "2010/3/5 11:05" "" + "application/x-msdownload" "Microsoft .NET Runtime Execution Engine" "(Verified) Microsoft Corporation" "c:\windows\system32\mscoree.dll" "2010/3/5 11:05" "" "HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "2021/8/13 16:05" "" + "qingshellext" "qingbangong shellext64" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\qingshellext64.dll" "2021/7/17 7:52" "" "HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "2021/4/28 15:34" "" + "Safe360Ext" "360安全卫士 系统扩展模块" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\utils\shell360ext64.dll" "2019/12/23 18:37" "" + "SoftMgrExt" "360软件管家" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\softmgr\softmgrext64.dll" "2020/11/23 14:33" "" + "WinRAR" "WinRAR 外壳扩展" "(Verified) win.rar GmbH" "d:\rar\rarext.dll" "2020/12/2 2:00" "" "HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "2017/10/27 14:20" "" + "QQShellExt" "腾讯QQ" "(Verified) Tencent Technology(Shenzhen) Company Limited" "c:\program files (x86)\tencent\qq\shellext\qqshellext64.dll" "2017/9/29 16:09" "" "HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "2021/8/13 16:05" "" + "qingshellext" "qingbangong shellext64" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\qingshellext64.dll" "2021/7/17 7:52" "" "HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "2021/3/29 14:43" "" + "Safe360Ext" "360安全卫士 系统扩展模块" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\utils\shell360ext64.dll" "2019/12/23 18:37" "" "HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "2021/8/13 16:05" "" + "qingshellext" "qingbangong shellext64" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\qingshellext64.dll" "2021/7/17 7:52" "" "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "2020/10/29 16:29" "" + "SoftMgrExt" "360软件管家" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\softmgr\softmgrext64.dll" "2020/11/23 14:33" "" "HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "2021/4/28 15:34" "" + "QQShellExt" "腾讯QQ" "(Verified) Tencent Technology(Shenzhen) Company Limited" "c:\program files (x86)\tencent\qq\shellext\qqshellext64.dll" "2017/9/29 16:09" "" + "Safe360Ext" "360安全卫士 系统扩展模块" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\utils\shell360ext64.dll" "2019/12/23 18:37" "" + "WinRAR" "WinRAR 外壳扩展" "(Verified) win.rar GmbH" "d:\rar\rarext.dll" "2020/12/2 2:00" "" "HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "2021/4/28 15:34" "" + "WinRAR" "WinRAR 外壳扩展" "(Verified) win.rar GmbH" "d:\rar\rarext.dll" "2020/12/2 2:00" "" "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "2021/7/15 9:28" "" + " 360UDiskGuard Icon Overlay" "360安全卫士 木马防火墙模块" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\safemon\360udiskguard64.dll" "2020/10/15 17:24" "" + " aWeDriveCloud" "微盘" "(Verified) Tencent Technology(Shenzhen) Company Limited" "d:\wxwrok\wxdrive\extensions\x64\wedriveplugin64_143.dll" "2021/5/28 20:35" "" + " aWeDriveComplete" "微盘" "(Verified) Tencent Technology(Shenzhen) Company Limited" "d:\wxwrok\wxdrive\extensions\x64\wedriveplugin64_143.dll" "2021/5/28 20:35" "" + " aWeDriveError" "微盘" "(Verified) Tencent Technology(Shenzhen) Company Limited" "d:\wxwrok\wxdrive\extensions\x64\wedriveplugin64_143.dll" "2021/5/28 20:35" "" + " aWeDriveSyncing" "微盘" "(Verified) Tencent Technology(Shenzhen) Company Limited" "d:\wxwrok\wxdrive\extensions\x64\wedriveplugin64_143.dll" "2021/5/28 20:35" "" "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "2020/10/29 16:29" "" + "SafeMon Class" "360安全卫士 网盾防护模块" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\safemon\safemon64.dll" "2021/6/15 16:20" "" "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "2020/10/29 16:29" "" + "SafeMon Class" "360安全卫士 网盾防护模块" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\safemon\safemon.dll" "2021/7/1 21:19" "" + "{18DF081C-E8AD-4283-A596-FA578C2EBDC3}" "Adobe PDF Helper for Internet Explorer" "(Verified) Adobe Systems, Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll" "2012/9/24 10:24" "" + "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_111\bin\ssv.dll" "2016/9/23 10:37" "" + "{C9C7334B-5657-41e1-8F79-F6AACECA05F4}" "QQMiniDL Plugin DLL" "(Verified) Tencent Technology(Shenzhen) Company Limited" "c:\program files (x86)\common files\tencent\qqminidl\60\browser\qqiehelper01.dll" "2014/7/15 16:18" "" + "{DBC80044-A445-435b-BC74-9C25C1C588A9}" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_111\bin\jp2ssv.dll" "2016/9/23 10:37" "" + "{DDD362CF-523B-4BC9-8FDC-58F93B6BC945}" "" "" "File not found: C:\Users\waibao1\AppData\Roaming\Tencent\QQ\QQAntiPhishing\AccountProtect.dll" "" "" "HKCU\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "2018/6/25 10:40" "" + "添加到印象笔记 5" "" "" "c:\users\hangcaigongyong\appdata\local\apps\evernote\evernote\evernoteieres\addnote.html" "2018/6/19 12:28" "" "Task Scheduler" "" "" "" "" "" + "\Adobe Flash Player PPAPI Notifier" "Adobe® Flash® Player Installer/Uninstaller 29.0 r0" "(Verified) Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashutil32_29_0_0_140_pepper.exe" "2018/3/27 9:03" "" + "\Microsoft\Windows\abzdns" "" "" "File not found: C:\Windows\TEMP\abzdns.exe" "" "" + "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Application Experience\ProgramDataUpdater" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Autochk\Proxy" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Defrag\ScheduledDefrag" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\ecfsrqo" "" "" "File not found: C:\Windows\TEMP\ecfsrqo.exe" "" "" + "\Microsoft\Windows\fmuwn" "" "" "File not found: C:\Windows\TEMP\fmuwn.exe" "" "" + "\Microsoft\Windows\hajt" "" "" "File not found: C:\Windows\TEMP\hajt.exe" "" "" + "\Microsoft\Windows\hdiwolz" "" "" "File not found: C:\Windows\TEMP\hdiwolz.exe" "" "" + "\Microsoft\Windows\KD5SvphGAXE\fa75PRog" "" "" "File not found: function" "" "" + "\Microsoft\Windows\Location\Notifications" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\ltke" "" "" "File not found: C:\Windows\TEMP\ltke.exe" "" "" + "\Microsoft\Windows\Media Center\ActivateWindowsSearch" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\ConfigureInternetTimeService" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\DispatchRecoveryTasks" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\ehDRMInit" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\InstallPlayReady" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\mcupdate" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\MediaCenterRecoveryTask" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\OCURActivate" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\OCURDiscovery" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\PBDADiscovery" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\PBDADiscoveryW1" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\PBDADiscoveryW2" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\PvrRecoveryTask" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\PvrScheduleTask" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\RegisterSearch" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\ReindexSearchRoot" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\SqlLiteRecoveryTask" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Media Center\UpdateRecordPath" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\MUI\Lpksetup" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\MUI\Mcbuilder" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "File not found: $(Arg1)\by user disabled" "" "" + "\Microsoft\Windows\ngpwl" "" "" "File not found: C:\Windows\TEMP\ngpwl.exe" "" "" + "\Microsoft\Windows\npsvr" "" "" "File not found: C:\Windows\TEMP\npsvr.exe" "" "" + "\Microsoft\Windows\nyziud" "" "" "File not found: C:\Windows\TEMP\nyziud.exe" "" "" + "\Microsoft\Windows\olynzqm" "" "" "File not found: C:\Windows\TEMP\olynzqm.exe" "" "" + "\Microsoft\Windows\pjlbuer" "" "" "File not found: C:\Windows\TEMP\pjlbuer.exe" "" "" + "\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\qdwoymk" "" "" "File not found: C:\Windows\TEMP\qdwoymk.exe" "" "" + "\Microsoft\Windows\qvepa" "" "" "File not found: C:\Windows\TEMP\qvepa.exe" "" "" + "\Microsoft\Windows\qyjr" "" "" "File not found: C:\Windows\TEMP\qyjr.exe" "" "" + "\Microsoft\Windows\rxdolmi" "" "" "File not found: C:\Windows\TEMP\rxdolmi.exe" "" "" + "\Microsoft\Windows\SystemRestore\SR" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\talwy" "" "" "File not found: C:\Windows\TEMP\talwy.exe" "" "" + "\Microsoft\Windows\tgrv" "" "" "File not found: C:\Windows\TEMP\tgrv.exe" "" "" + "\Microsoft\Windows\uemqlrk" "" "" "File not found: C:\Windows\TEMP\uemqlrk.exe" "" "" + "\Microsoft\Windows\ufjs" "" "" "File not found: C:\Windows\TEMP\ufjs.exe" "" "" + "\Microsoft\Windows\ulkgqan" "" "" "File not found: C:\Windows\TEMP\ulkgqan.exe" "" "" + "\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\WindowsBackup\ConfigNotification" "" "" "File not found: by user disabled" "" "" + "\Microsoft\Windows\xoyuwfi" "" "" "File not found: C:\Windows\TEMP\xoyuwfi.exe" "" "" + "\WpsUpdateTask_hangcaigongyong" "WPS Office Expansion tool" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\wtoolex\wpsupdate.exe" "2021/7/17 8:21" "" "HKLM\System\CurrentControlSet\Services" "" "" "" "2021/8/24 16:08" "" + "AdobeARMservice" "Adobe Acrobat Update Service: Adobe Acrobat Updater 将使您的 Adobe 软件始终保持最新状态。" "(Verified) Adobe Systems, Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe" "2012/9/21 4:16" "" + "AdobeFlashPlayerUpdateSvc" "Adobe Flash Player Update Service: 此服务可使您安装的 Adobe Flash Player 能及时获得最新增强功能和安全修补程序。" "(Verified) Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe" "2018/3/27 9:28" "" + "aspnet_state" "ASP.NET State Service: Provides support for out-of-process session states for ASP.NET. If this service is stopped, out-of-process requests will not be processed. If this service is disabled, any services that explicitly depend on it will fail to start." "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe" "2010/3/18 21:03" "" + "CBA8" "LANDesk(R) Management Agent: Provides management services for LANDesk(R) products" "(Not verified) LANDESK Software, Inc. and its affiliates." "c:\program files (x86)\landesk\shared files\residentagent.exe" "2016/7/27 2:14" "" + "clr_optimization_v4.0.30319_32" "Microsoft .NET Framework NGEN v4.0.30319_X86: Microsoft .NET Framework NGEN" "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe" "2010/3/18 15:45" "" + "clr_optimization_v4.0.30319_64" "Microsoft .NET Framework NGEN v4.0.30319_X64: Microsoft .NET Framework NGEN" "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe" "2010/3/18 20:41" "" + "cphs" "Intel(R) Content Protection HECI Service: Intel(R) Content Protection HECI Service - enables communication with the Content Protection FW" "(Verified) Intel(R) pGFX" "c:\windows\syswow64\intelcphecisvc.exe" "2017/1/3 15:30" "" + "DiagTrack" "Diagnostics Tracking Service: The Diagnostics Tracking Service enables data collection about functional issues in Windows components." "(Not verified) Microsoft Corporation" "c:\windows\system32\diagtrack.dll" "2018/8/9 13:51" "" + "dsmainsrv" "dsmainsrv: 360安全卫士云查杀辅助服务。" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\deepscan\dsmain.exe" "2021/6/10 21:06" "" + "FontCache3.0.0.0" "Windows Presentation Foundation Font Cache 3.0.0.0: 通过缓存常用的字体数据来优化 Windows Presentation Foundation (WPF) 应用程序的性能。WPF 应用程序将启动此服务(如果尚未启动)。可以禁用此服务,尽管这样做会降低 WPF 应用程序的性能。" "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe" "2010/9/29 15:36" "" + "idsvc" "Windows CardSpace: 安全启用数字标识符的创建、管理和公开。" "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v3.0\windows communication foundation\infocard.exe" "2010/9/29 15:25" "" + "igfxCUIService2.0.0.0" "Intel(R) HD Graphics Control Panel Service: Service for Intel(R) HD Graphics Control Panel" "(Verified) Intel(R) pGFX" "c:\windows\system32\igfxcuiservice.exe" "2017/1/19 13:33" "" + "Intel Local Scheduler Service" "Intel Local Scheduler Service: LocalSch" "(Verified) LANDesk Software, Inc." "c:\program files (x86)\landesk\ldclient\localsch.exe" "2016/9/22 7:47" "" + "Intel PDS" "Intel PDS: CBA -- Ping Discovery Service" "(Not verified) LANDesk Software Ltd." "c:\windows\syswow64\cba\pds.exe" "2008/5/16 0:33" "" + "ISSUSER" "LANDESK 远程支持服务: 允许来自内部服务部门或 IT 部门的远程支持。" "(Verified) LANDesk Software, Inc." "c:\program files (x86)\landesk\ldclient\issuser.exe" "2016/9/22 7:21" "" + "LANDesk Targeted Multicast" "LANDESK 定向多播: Receives and/or sends multicast data as part of LANDesk multicast jobs. Also required for file discovery used by peer download" "(Verified) LANDesk Software, Inc." "c:\program files (x86)\landesk\ldclient\tmcsvc.exe" "2016/9/22 7:26" "" + "PrintNotify" "Printer Extensions and Notifications: 此服务可打开自定义打印机对话框并处理来自远程打印服务器或打印机的通知。如果你关闭此服务,将无法看到打印机扩展或通知。" "(Not verified) Microsoft Corporation" "c:\windows\system32\spool\drivers\x64\3\printconfig.dll" "2016/7/16 10:13" "" + "QPCore" "QPCore Service: 腾讯安全服务" "(Verified) Tencent Technology(Shenzhen) Company Limited" "c:\program files (x86)\common files\tencent\qqprotect\bin\qqprotect.exe" "2019/11/20 17:31" "" + "RtkAudioService" "Realtek Audio Service: For cooperation with Realtek audio driver." "(Verified) Realtek Semiconductor Corp." "c:\program files\realtek\audio\hda\rtkaudioservice64.exe" "2016/12/13 15:15" "" + "Softmon" "LANDesk(R) Software Monitoring Service: Monitors application usage" "(Verified) LANDesk Software, Inc." "c:\program files (x86)\landesk\ldclient\softmon.exe" "2016/9/22 8:10" "" + "wpscloudsvr" "WPS Office Cloud Service: 用于提供WPS Office云服务:包括云文档、文档安全、会员服务等多种云资源,为用户提供完整及安全的产品体验,及时更新产品功能及修复问题。如果停止此服务,则WPS Office无法提供云服务,和及时修复安全漏洞。" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "c:\program files (x86)\kingsoft\office6\wpscloudsvr.exe" "2021/7/17 8:20" "" + "ZhuDongFangYu" "主动防御: 360主动防御的服务项,提供实时保护、文件变化监控、智能扫描加速等功能。关闭此服务可能导致木马防不住、查不出,严重降低木马扫描速度。" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\deepscan\zhudongfangyu.exe" "2021/1/7 16:32" "" "HKLM\System\CurrentControlSet\Services" "" "" "" "2021/8/24 16:08" "" + "360AntiExploit" "360Safe Exploit Defender Service: 360安全卫士 网络防黑模块" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360antiexploit64.sys" "2020/7/13 21:31" "" + "360AntiHacker" "360Safe Anti Hacker Service: 360安全卫士 网络防黑模块" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360antihacker64.sys" "2020/11/5 16:06" "" + "360AntiHijack" "360Safe Anti Hijack Service: 360安全卫士 DNS防护模块" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360antihijack64.sys" "2021/7/8 18:21" "" + "360Box64" "360Box mini-filter driver: 360Box64" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360box64.sys" "2021/4/16 16:35" "" + "360Camera" "360Safe Camera Filter Service: 360安全卫士 木马防火墙模块" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360camera64.sys" "2019/12/24 18:50" "" + "360FsFlt" "360FsFlt mini-filter driver: 360安全卫士 木马防火墙模块" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360fsflt.sys" "2021/6/25 18:45" "" + "360netmon" "360netmon: 360netmon" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360netmon.sys" "2021/4/12 18:52" "" + "360qpesv" "360qpesv driver: 360安全卫士 开机加速模块" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360qpesv64.sys" "2021/6/21 15:12" "" + "360reskit64" "360reskit driver: 360安全卫士 开机加速模块" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360reskit64.sys" "2021/5/11 17:15" "" + "360Sensor" "360Sensor: 360Sensor" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\360sensor64.sys" "2019/8/12 11:54" "" + "amdhub30" "AMD USB 3.0 Hub Driver: AMD USB 3.0 Hub Driver" "(Verified) Advanced Micro Devices, Inc." "c:\windows\system32\drivers\amdhub30.sys" "2015/1/21 15:17" "" + "amdxhc" "AMD USB 3.0 Host Controller Driver: AMD USB 3.0 Host Controller Driver" "(Verified) Advanced Micro Devices, Inc." "c:\windows\system32\drivers\amdxhc.sys" "2015/1/21 15:17" "" + "BAPIDRV" "BAPIDRV: BAPIDRV" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\bapidrv64.sys" "2021/6/11 17:12" "" + "DeepATS" "ATS" "(Verified) Beijing Qihu Technology Co., Ltd." "d:\360\360safe\deepscan\ats64.sys" "2021/3/10 17:33" "" + "DsArk" "DsArk: DsArk64.sys" "(Verified) Beijing Qihu Technology Co., Ltd." "c:\windows\system32\drivers\dsark64.sys" "2019/12/4 10:33" "" + "iaStor" "iaStor: Intel Rapid Storage Technology driver - x64" "(Verified) Intel Corporation" "c:\windows\system32\drivers\iastor.sys" "2012/2/2 8:15" "" + "iaStorA" "iaStorA: Intel(R) Rapid Storage Technology driver - x64" "(Verified) Intel Corporation - Rapid Storage Technology" "c:\windows\system32\drivers\iastora.sys" "2015/8/18 20:18" "" + "iaStorB" "iaStorB: Intel Rapid Storage Technology Enterprise driver - x64" "(Verified) Intel Corporation - Software and Firmware Products" "c:\windows\system32\drivers\iastorb.sys" "2014/5/7 20:02" "" + "iaStorF" "iaStorF: Intel(R) Rapid Storage Technology Filter driver - x64" "(Verified) Intel Corporation - Rapid Storage Technology" "c:\windows\system32\drivers\iastorf.sys" "2015/8/18 20:19" "" + "iaStorS" "iaStorS: Intel Rapid Storage Technology Enterprise driver - x64" "(Verified) Intel Corporation - Software and Firmware Products" "c:\windows\system32\drivers\iastors.sys" "2014/5/7 19:57" "" + "igfx" "igfx: Intel Graphics Kernel Mode Driver" "(Verified) Intel(R) pGFX" "c:\windows\system32\drivers\igdkmd64.sys" "2017/1/19 13:57" "" + "IntcAzAudAddService" "Service for Realtek HD Audio (WDM): Realtek(r) High Definition Audio Function Driver" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys" "2017/1/5 18:19" "" + "iusb3hub" "英特尔(R) USB 3.0 集线器驱动程序: Intel(R) USB 3.0 Hub Driver" "(Verified) Intel Corporation - Client Components Group" "c:\windows\system32\drivers\iusb3hub.sys" "2015/9/25 22:10" "" + "iusb3xhc" "英特尔(R) USB 3.0 可扩展主机控制器驱动程序: Intel(R) USB 3.0 eXtensible Host Controller Driver" "(Verified) Intel Corporation - Client Components Group" "c:\windows\system32\drivers\iusb3xhc.sys" "2015/9/25 22:10" "" + "kavbootc" "kavbootc: Kingsoft Antivirus Defend Engine Bootclean Module" "(Verified) Zhuhai Kingsoft Software Co.,Ltd" "c:\windows\system32\drivers\kavbootc64.sys" "2010/4/14 1:36" "" + "LSI_SAS2" "LSI_SAS2: LSI SAS Gen2 Driver (StorPort)" "(Verified) LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys" "2014/5/23 19:33" "" + "megasas2" "megasas2: MEGASAS RAID Controller Driver for Windows" "(Verified) LSI Corporation" "c:\windows\system32\drivers\megasas2.sys" "2012/11/8 6:04" "" + "MEIx64" "Intel(R) Management Engine Interface : Intel(R) Management Engine Interface" "(Verified) Intel(R) Embedded Subsystems and IP Blocks Group" "c:\windows\system32\drivers\teedriverx64.sys" "2016/7/14 0:51" "" + "MyDrivers0_0_1" "MyDrivers0_0_1: " "" "File not found: C:\Program Files (x86)\MyDrivers\DriverGenius\MyDrivers64.sys" "" "" + "NAVENG" "NAVENG: " "" "File not found: C:\ProgramData\Symantec\Symantec Endpoint Protection\14.0.2415.0200.105\Data\Definitions\SDSDefs\20180109.008\ENG64.SYS" "" "" + "NAVEX15" "NAVEX15: " "" "File not found: C:\ProgramData\Symantec\Symantec Endpoint Protection\14.0.2415.0200.105\Data\Definitions\SDSDefs\20180109.008\EX64.SYS" "" "" + "NemuDrv" "Nemu Support Driver: Nemu Support Driver" "(Verified) NetEase(Hangzhou) Network Co. Ltd." "e:\11\nemu\hypervisor\nemudrv.sys" "2016/5/10 17:24" "" + "QQProtectX64" "QQProtect Driver For x64: QQProtect Driver for X64" "(Verified) Tencent Technology(Shenzhen) Company Limited" "c:\windows\system32\drivers\qqprotectx64.sys" "2019/11/20 17:23" "" + "rccfg" "AMD-RAID Config Device: AMD-RAID Configuration driver" "(Verified) Dot Hill Systems Corp" "c:\windows\system32\drivers\rccfg.sys" "2015/3/12 21:53" "" + "rcraid" "rcraid: AMD-RAID StorPort" "(Verified) Dot Hill Systems Corp" "c:\windows\system32\drivers\rcraid.sys" "2015/3/12 22:03" "" + "RTL8167" "Realtek 8167 NT Driver: Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "(Verified) Realtek Semiconductor Corp" "c:\windows\system32\drivers\rt64win7.sys" "2016/4/22 14:58" "" + "usbfilter" "AMD USB Filter Driver: AMD USB Filter Driver" "(Verified) Advanced Micro Devices, Inc." "c:\windows\system32\drivers\usbfilter.sys" "2011/12/14 15:44" "" "HKLM\SOFTWARE\Classes\Htmlfile\Shell\Open\Command\(默认)" "" "" "" "2017/2/22 8:58" "" + "C:\Users\Administrator\AppData\Local\SogouExplorer\SogouExplorer.exe" "搜狗高速浏览器" "(Verified) Sogou.com" "c:\users\administrator\appdata\local\sogouexplorer\sogouexplorer.exe" "2015/11/14 0:04" "" "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GpExtensions" "" "" "" "2010/11/21 15:17" "" + "{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}" "IEAK branding" "(Verified) Microsoft Corporation" "c:\windows\system32\iedkcs32.dll" "2011/3/8 20:37" "" + "{7B849a69-220F-451E-B3FE-2CB811AF94AE}" "IEAK branding" "(Verified) Microsoft Corporation" "c:\windows\system32\iedkcs32.dll" "2011/3/8 20:37" "" + "{A2E30F80-D7DE-11d2-BBDE-00C04F86AE3B}" "IEAK branding" "(Verified) Microsoft Corporation" "c:\windows\system32\iedkcs32.dll" "2011/3/8 20:37" "" + "{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}" "IEAK branding" "(Verified) Microsoft Corporation" "c:\windows\system32\iedkcs32.dll" "2011/3/8 20:37" "" "HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "2018/1/3 11:37" "" + "LM_LMADPP" "Printer Communication System" "(Not verified) " "c:\windows\system32\lmadpplang.dll" "2013/7/31 15:28" "" "WMI Database Entries - run as Administrator for complete scan" "" "" "" "" "" + "BVTConsumer" "" "" "File not found: File not found: KernCap.vbs" "" "" + "c9SGbtOJ" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cB0snliWdH" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cCkLKoZyY" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cesplgiDQuM" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cEy75gZ" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cg9ZoLpe8CSf" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cQC8oIURh" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cXoImbHf9J" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" + "cyXD13zm" "Windows 命令处理程序" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "2010/11/20 17:46" "" "HKLM\Software\Microsoft\Office\Excel\Addins" "" "" "" "2020/4/9 2:33" "" + "Kingsoft MSO2PdfPlugins Addin" "" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\kmso2pdfplugins64.dll" "2021/7/17 7:50" "" "HKLM\Software\Wow6432Node\Microsoft\Office\Excel\Addins" "" "" "" "2020/4/8 2:52" "" + "Kingsoft MSO2PdfPlugins Addin" "" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\kmso2pdfplugins.dll" "2021/7/17 8:19" "" "HKLM\Software\Microsoft\Office\PowerPoint\Addins" "" "" "" "2020/4/9 2:33" "" + "Kingsoft MSO2PdfPlugins Addin" "" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\kmso2pdfplugins64.dll" "2021/7/17 7:50" "" "HKLM\Software\Wow6432Node\Microsoft\Office\PowerPoint\Addins" "" "" "" "2020/4/8 2:52" "" + "Kingsoft MSO2PdfPlugins Addin" "" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\kmso2pdfplugins.dll" "2021/7/17 8:19" "" "HKLM\Software\Microsoft\Office\Word\Addins" "" "" "" "2020/4/9 2:33" "" + "Kingsoft MSO2PdfPlugins Addin" "" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\kmso2pdfplugins64.dll" "2021/7/17 7:50" "" "HKLM\Software\Wow6432Node\Microsoft\Office\Word\Addins" "" "" "" "2020/4/8 2:52" "" + "Kingsoft MSO2PdfPlugins Addin" "" "(Verified) Zhuhai Kingsoft Office Software Co., Ltd." "d:\wps office\11.1.0.10650\office6\kmso2pdfplugins.dll" "2021/7/17 8:19" ""