iphone7什么时候上市是“funshionwed”
点击联系发帖人
时间:2015-06-03 14:30
No input file specified.查看: 10281|回复: 25
电脑里自动安装瑞星,是悄悄安装的,已经几次了,删除了又悄悄安装
救命呀。。。
换杀软为瑞星
1.按照我的签名扫描一份sreng日志上传。
2.尝试用360急救箱开强力模式处理,并且尝试装上360出品的某个小工具——软件捆绑净化器。
3.最近有没有运行什么可疑的文件?
zhou0197 发表于
1.按照我的签名扫描一份sreng日志上传。
2.尝试用360急救箱开强力模式处理,并且尝试装上360出品的某个小 ...
下了360的软件,多一个瑞星全球部署软件
zhou0197 发表于
1.按照我的签名扫描一份sreng日志上传。
2.尝试用360急救箱开强力模式处理,并且尝试装上360出品的某个小 ...
大神,帮我看一下日志
System Repair Engineer 2.8.2.1321
Smallfrogs ([url][/url])
Windows 7 Ultimate Edition Service Pack 1 (Build 7601) - 管理权限用户 - 完整功能
以下内容被选中:
& & 所有的启动项目(包括注册表、启动文件夹、服务等)
& & 浏览器加载项
& & 正在运行的进程(包括进程模块信息)
& & 文件关联
& & Winsock 提供者
& & API HOOK
& & 隐藏进程
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
& & &WoxiuClient&&&C:\Program Files (x86)\woxiuclient\woxiuclient.exe& -startM&&&[File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
& & &Cobra&&&e:\Program Files (x86)\Cobra mouse driver\Cobra\Monitor.exe&&&&[Cobra]
& & &stools tray&&&C:\Program Files (x86)\STools\stools.exe& -tray&&&[(Verified)Beijing Skycenter Technology Limited]
& & &kxesc&&&e:\program files (x86)\kingsoft\kingsoft antivirus\kxetray.exe& -autorun&&&[File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
& & &shell&&explorer.exe&&&[(Verified)Microsoft Windows]
& & &Userinit&&C:\Windows\system32\UserInit.exe,&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
& & &AppInit_DLLs&&&&&[N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
& & &WebCheck&&&&&[N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{22d6f312-b0f6-11d0-94ab-e95}]
& & &Microsoft Windows Media Player&&%SystemRoot%\system32\unregmp2.exe /ShowWMP&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09--FED}]
& & &Themes Setup&&%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll&&&[File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
& & &Microsoft Windows&&&%ProgramFiles(x86)%\Windows Mail\WinMail.exe& OCInstallUserConfigOE&&&[File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
& & &Microsoft Windows Media Player&&%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{-ECBD-11cf-8B85-00AA005B4340}]
& & &Windows Desktop Update&®svr32.exe /s /n /i:U shell32.dll&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018--5476DBF70820}]
& & &N/A&&C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install&&&[(Verified)Microsoft Corporation]
==================================
启动文件夹
[Cobra driver]
&&&C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cobra driver.lnk --& E:\PROGRA~2\COBRAM~1\Cobra\Monitor.EXE [Cobra]&&N&
[Cobra driver]
&&&C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cobra driver.lnk --& E:\PROGRA~2\COBRAM~1\Cobra\Monitor.EXE [Cobra]&&N&
==================================
服务
[360 杀毒实时防护加载服务 / 360rp][Stopped/Manual Start]
&&&&E:\Program Files (x86)\360\360sd\360rps.exe&&&&
[Acronis OS Selector Reinstall Service / AcronisOSSReinstallSvc][Stopped/Auto Start]
&&&&C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe&&&N/A&
[Adobe Flash Player Update Service / AdobeFlashPlayerUpdateSvc][Stopped/Manual Start]
&&&C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe&&Adobe Systems Incorporated&
[Application Experience / AeLookupSvc][Running/Manual Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\aelupsvc.dll&&Microsoft Corporation&
[Alipay security service / AlipaySecSvc][Running/Auto Start]
&&&&C:\Program Files (x86)\alipay\alieditplus\AlipaySecSvc.exe&&&Alipay Inc.&
[Application Identity / AppIDSvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation--&%SystemRoot%\System32\appidsvc.dll&&Microsoft Corporation&
[Application Information / Appinfo][Running/Manual Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\appinfo.dll&&Microsoft Corporation&
[Windows Audio Endpoint Builder / AudioEndpointBuilder][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\Audiosrv.dll&&Microsoft Corporation&
[Windows Audio / AudioSrv][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted--&%SystemRoot%\System32\Audiosrv.dll&&Microsoft Corporation&
[ActiveX Installer (AxInstSV) / AxInstSV][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k AxInstSVGroup--&%SystemRoot%\System32\AxInstSV.dll&&Microsoft Corporation&
[BitLocker Drive Encryption Service / BDESVC][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\bdesvc.dll&&Microsoft Corporation&
[BFAssistantSvc / BFAssistantSvc][Stopped/Manual Start]
&&&e:\Program Files (x86)\Baofeng\PhoneAssistant\BFAssistantSvc.exe&&N/A&
[Base Filtering Engine / BFE][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork--&%SystemRoot%\System32\bfe.dll&&Microsoft Corporation&
[Background Intelligent Transfer Service / BITS][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\qmgr.dll&&Microsoft Corporation&
[Computer Browser / Browser][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\browser.dll&&Microsoft Corporation&
[Bluetooth Support Service / bthserv][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k bthsvcs--&%SystemRoot%\system32\bthserv.dll&&Microsoft Corporation&
[Certificate Propagation / CertPropSvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\certprop.dll&&Microsoft Corporation&
[Offline Files / CscService][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\cscsvc.dll&&Microsoft Corporation&
[DCOM Server Process Launcher / DcomLaunch][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k DcomLaunch--&%SystemRoot%\system32\rpcss.dll&&Microsoft Corporation&
[Disk Defragmenter / defragsvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k defragsvc--&%Systemroot%\System32\defragsvc.dll&&Microsoft Corporation&
[DriverGenius PNP Service / DGPNPSEV][Running/Auto Start]
&&&d:\Program Files (x86)\MyDrivers\DriverGenius2013\DgService.exe&&&
[DNS Client / Dnscache][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k NetworkService--&%SystemRoot%\System32\dnsrslvr.dll&&Microsoft Corporation&
[Wired AutoConfig / dot3svc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\dot3svc.dll&&Microsoft Corporation&
[Diagnostic Policy Service / DPS][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork--&%SystemRoot%\system32\dps.dll&&Microsoft Corporation&
[DTLService / DTLService][Stopped/Manual Start]
&&&D:\Program Files\DriveTheLife2012\DTLService.exe&&深圳市驱动人生软件技术有限公司&
[Extensible Authentication Protocol / EapHost][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\eapsvc.dll&&Microsoft Corporation&
[F-Prot Antivirus Update Monitor / F-Prot Antivirus Update Monitor][Stopped/Auto Start]
&&&&&&(File is missing)&
[ICBC Daemon Service / ICBC Daemon Service][Running/Auto Start]
&&&D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN64\IcbcDaemon_64.exe&&N/A&
[IKE and AuthIP IPsec Keying Modules / IKEEXT][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\ikeext.dll&&Microsoft Corporation&
[PnP-X IP Bus Enumerator / IPBusEnum][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\system32\ipbusenum.dll&&Microsoft Corporation&
[IP Helper / iphlpsvc][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k NetSvcs--&%SystemRoot%\System32\iphlpsvc.dll&&Microsoft Corporation&
[NVIDIA Display Driver Service / nvsvc][Stopped/Auto Start]
&&&&&(File is missing)&
[Peer Networking Identity Manager / p2pimsvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\pnrpsvc.dll&&Microsoft Corporation&
[Peer Networking Grouping / p2psvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\p2psvc.dll&&Microsoft Corporation&
[Program Compatibility Assistant Service / PcaSvc][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\pcasvc.dll&&Microsoft Corporation&
[BranchCache / PeerDistSvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k PeerDist--&%SystemRoot%\system32\peerdistsvc.dll&&Microsoft Corporation&
[Plug and Play / PlugPlay][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k DcomLaunch--&%SystemRoot%\system32\umpnpmgr.dll&&Microsoft Corporation&
[PnkBstrA / PnkBstrA][Running/Auto Start]
&&&C:\Windows\system32\PnkBstrA.exe&&N/A&
[PNRP Machine Name Publication Service / PNRPAutoReg][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\pnrpauto.dll&&Microsoft Corporation&
[Peer Name Resolution Protocol / PNRPsvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\pnrpsvc.dll&&Microsoft Corporation&
[IPsec Policy Agent / PolicyAgent][Running/Manual Start]
&&&C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted--&%SystemRoot%\System32\ipsecsvc.dll&&Microsoft Corporation&
[Power / Power][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k DcomLaunch--&%SystemRoot%\system32\umpo.dll&&Microsoft Corporation&
[User Profile Service / ProfSvc][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%systemroot%\system32\profsvc.dll&&Microsoft Corporation&
[SToolSrv / SToolSrv][Running/Auto Start]
&&&C:\Program Files (x86)\STools\MSrv.exe&&Beijing Skycenter Technology Limited&
[Microsoft Software Shadow Copy Provider / swprv][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k swprv--&%Systemroot%\System32\swprv.dll&&Microsoft Corporation&
[Superfetch / SysMain][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%systemroot%\system32\sysmain.dll&&Microsoft Corporation&
[Tablet PC Input Service / TabletInputService][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\TabSvc.dll&&Microsoft Corporation&
[TPM Base Services / TBS][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation--&%SystemRoot%\System32\tbssvc.dll&&Microsoft Corporation&
[Remote Desktop Services / TermService][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k NetworkService--&%SystemRoot%\System32\termsrv.dll&&Microsoft Corporation&
[Themes / Themes][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\system32\themeservice.dll&&Microsoft Corporation&
[Thread Ordering Server / THREADORDER][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalService--&%SystemRoot%\system32\mmcss.dll&&Microsoft Corporation&
[Distributed Link Tracking Client / TrkWks][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\trkwks.dll&&Microsoft Corporation&
[VIA Karaoke digital mixer Service / VIAKaraokeService][Running/Auto Start]
&&&C:\Windows\system32\viakaraokesrv.exe&&VIA Technologies, Inc.&
[Windows Defender / WinDefend][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k secsvcs--&%ProgramFiles%\Windows Defender\mpsvc.dll&&N/A&
[Windows Management Instrumentation / Winmgmt][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\system32\wbem\WMIsvc.dll&&Microsoft Corporation&
[WLAN AutoConfig / Wlansvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\wlansvc.dll&&Microsoft Corporation&
[主动防御 / ZhuDongFangYu][Running/Auto Start]
&&&&E:\Program Files (x86)\360\360Safe\deepscan\zhudongfangyu.exe&&&&
[捆绑软件拦截器服务 / 360ai][Stopped/Manual Start]
&&&&E:\Program Files\360\360AI\360AIs.exe&&&&
==================================
驱动程序
[360Safe Anti Hacker Service / 360AntiHacker][Running/System Start]
&&&System32\Drivers\360AntiHacker64.sys&&&
[360AvFlt mini-filter driver / 360AvFlt][Stopped/Manual Start]
&&&system32\DRIVERS\360AvFlt.sys&&&
[360Box mini-filter driver / 360Box64][Running/System Start]
&&&system32\DRIVERS\360Box64.sys&&&
[360Safe Camera Filter Service / 360Camera][Running/System Start]
&&&System32\Drivers\360Camera64.sys&&&
[360FsFlt mini-filter driver / 360FsFlt][Running/System Start]
&&&system32\DRIVERS\360FsFlt.sys&&&
[360netmon / 360netmon][Running/System Start]
&&&system32\DRIVERS\360netmon.sys&&&
[adp94xx / adp94xx][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\adp94xx.sys&&Adaptec, Inc.&
[adpahci / adpahci][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\adpahci.sys&&Adaptec, Inc.&
[adpu320 / adpu320][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\adpu320.sys&&Adaptec, Inc.&
[aliide / aliide][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\aliide.sys&&Acer Laboratories Inc.&
[amdsata / amdsata][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\amdsata.sys&&Advanced Micro Devices&
[amdsbs / amdsbs][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\amdsbs.sys&&AMD Technologies Inc.&
[amdxata / amdxata][Running/Boot Start]
&&&\SystemRoot\system32\drivers\amdxata.sys&&Advanced Micro Devices&
[Apowersoft_AudioDevice / Apowersoft_AudioDevice][Stopped/Manual Start]
&&&system32\drivers\Apowersoft_AudioDevice.sys&&Wondershare&
[arc / arc][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\arc.sys&&Adaptec, Inc.&
[arcsas / arcsas][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\arcsas.sys&&Adaptec, Inc.&
[Broadcom NetXtreme II VBD / b06bdrv][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\bxvbda.sys&
[Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 / b57nd60a][Stopped/Manual Start]
&&&system32\DRIVERS\b57nd60a.sys&
[BAPIDRV / BAPIDRV][Running/System Start]
&&&\SystemRoot\System32\Drivers\BAPIDRV64.SYS&&&
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\BrFiltLo.sys&
[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\BrFiltUp.sys&
[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\Brserid.sys&
[Brother WDM Serial driver / BrSerWdm][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\BrSerWdm.sys&
[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\BrUsbMdm.sys&
[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\BrUsbSer.sys&
[cmdide / cmdide][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\cmdide.sys&&CMD Technology, Inc.&
[ComputerZ_x64 / ComputerZ_x64][Stopped/Manual Start]
&&&\??\E:\Program Files (x86)\Ludashi\ComputerZ_x64.sys&&&
[cpuz135 / cpuz135][Stopped/Manual Start]
&&&\??\C:\Users\ioewlk\AppData\Local\Temp\cpuz135\cpuz135_x64.sys&&N/A&
[DgSafe / DgSafe][Running/Auto Start]
&&&\??\C:\Windows\system32\drivers\DgSafe.sys&&&
[RuanMei Disk Activity Monitor Driver / diskactmon][Stopped/Manual Start]
&&&\??\C:\Windows\system32\drivers\diskactmon.sys&&&
[DTLD48EC12D954B431eABA20 / DTLD48EC12D954B431eABA20][Running/System Start]
&&&\??\D:\Program Files\DriveTheLife2012\DtlSrvPro64.dat&&N/A&
[DAEMON Tools Virtual Bus Driver / dtsoftbus01][Running/System Start]
&&&system32\DRIVERS\dtsoftbus01.sys&&Disc Soft Ltd&
[Broadcom NetXtreme II 10 GigE VBD / ebdrv][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\evbda.sys&
[elxstor / elxstor][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\elxstor.sys&&Emulex&
[Hauppauge Consumer Infrared Receiver / hcw85cir][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\hcw85cir.sys&&Hauppauge Computer Works, Inc.&
[HpSAMD / HpSAMD][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\HpSAMD.sys&&Hewlett-Packard Company&
[HWCore / HWCore][Stopped/Manual Start]
&&&\??\D:\Program Files\DriveTheLife2012\hwcore.sys&&N/A&
[HWiNFO32/64 Kernel Driver / HWiNFO32][Stopped/Manual Start]
&&&\??\C:\Users\ADMINI~1\AppData\Local\Temp\Mydrivers64A.SYS&&N/A&
[iaStorV / iaStorV][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\iaStorV.sys&&Intel Corporation&
[iirsp / iirsp][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\iirsp.sys&&Intel Corp./ICP vortex GmbH&
[ksapi64 / ksapi64][Stopped/Manual Start]
&&&\??\C:\Windows\system32\drivers\ksapi64.sys&&N/A&
[LSI_FC / LSI_FC][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_fc.sys&&LSI Corporation&
[LSI_SAS / LSI_SAS][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_sas.sys&&LSI Corporation&
[LSI_SAS2 / LSI_SAS2][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_sas2.sys&&LSI Corporation&
[LSI_SCSI / LSI_SCSI][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_scsi.sys&&LSI Corporation&
[megasas / megasas][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\megasas.sys&&LSI Corporation&
[MegaSR / MegaSR][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\MegaSR.sys&&LSI Corporation, Inc.&
[ATK0110 ACPI UTILITY / MTsensor][Running/Manual Start]
&&&system32\DRIVERS\ASACPI.sys&&&
[nfrd960 / nfrd960][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\nfrd960.sys&&IBM Corporation&
[WinPcap Packet Driver (NPF) / NPF][Stopped/Manual Start]
&&&system32\drivers\NPF.sys&&CACE Technologies, Inc.&
[Service for NVIDIA High Definition Audio Driver / NVHDA][Running/Manual Start]
&&&system32\drivers\nvhda64v.sys&&NVIDIA Corporation&
[nvlddmkm / nvlddmkm][Running/Manual Start]
&&&system32\DRIVERS\nvlddmkm.sys&&NVIDIA Corporation&
[nvraid / nvraid][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\nvraid.sys&&NVIDIA Corporation&
[nvstor / nvstor][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\nvstor.sys&&NVIDIA Corporation&
[PAN3509 Mouse Driver / PAN3509Fltr][Running/Manual Start]
&&&system32\drivers\PAN3509.sys&&XXX&
[PRODIGY / PRODIGY][Stopped/Manual Start]
&&&System32\Drivers\PRODIGY.SYS&&B-phreaks&
[ql2300 / ql2300][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\ql2300.sys&&QLogic Corporation&
[ql40xx / ql40xx][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\ql40xx.sys&&QLogic Corporation&
[Realtek 8167 NT Driver / RTL8167][Running/Manual Start]
&&&system32\DRIVERS\Rt64win7.sys&&Realtek&
[360Safe Search Hot Key Service / SearchHotKey][Running/System Start]
&&&System32\Drivers\SearchHotKeyx64.sys&&360安全中心&
[SiSRaid2 / SiSRaid2][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\SiSRaid2.sys&&Silicon Integrated Systems Corp.&
[SiSRaid4 / SiSRaid4][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\sisraid4.sys&&Silicon Integrated Systems&
[Acronis Snapshots Manager / snapman][Running/Boot Start]
&&&\SystemRoot\system32\DRIVERS\snapman.sys&&Acronis&
[stexstor / stexstor][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\stexstor.sys&&Promise Technology&
[TesSafe / TesSafe][Stopped/Manual Start]
&&&\??\C:\Windows\system32\TesSafe.sys&&TENCENT&
[HID-compliand device / t_mouse.sys][Stopped/Manual Start]
&&&system32\DRIVERS\t_mouse.sys&&N/A&
[VGPU / VGPU][Stopped/Manual Start]
&&&System32\drivers\rdvgkmd.sys&&N/A&
[VIA High Definition Audio Driver Service / VIAHdAudAddService][Running/Manual Start]
&&&system32\drivers\viahduaa.sys&&VIA Technologies, Inc.&
[viaide / viaide][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\viaide.sys&&VIA Technologies, Inc.&
[vsmraid / vsmraid][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\vsmraid.sys&&VIA Technologies Inc.,Ltd&
==================================
浏览器加载项
[]
&&{C9--D2} &, &
[迅雷FLV视频嗅探及下载支持]
&&{0EA37B17-6B8B--F3A4AA69C27A} &E:\迅雷七\BHO\XlBrowserAddin1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[360sdbho Class]
&&{0F4BF955-A127-41B7-A998-78} &E:\Program Files (x86)\360\360sd\360sdbho.dll, (Signed) &
[PIPI Link Helper]
&&{1A3-4CAB-84EE-C814E1AE0D8F} &C:\Users\Administrator\AppData\Roaming\pipi\JfCheck.dll, (Signed) PIPI Tech.&
[WebDetectorBHO Class]
&&{43BEAFD9-E005-483D-A367-146BA6C8A32E} &C:\Users\Administrator\AppData\Local\Tudou\FeisuTudou\tudouDetector.dll, (Signed) 土豆网&
[]
&&{4ADBABBD-E1CA-4f11-BD01-73B0B6E4B5BA} &, &
[Java(tm) Plug-In SSV Helper]
&&{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} &e:\java7\bin\ssv.dll, (Signed) Oracle Corporation&
[迅雷下载支持]
&&{889D2FEB-98-1DD2C5261283} &E:\迅雷七\BHO\XunleiBHO7.2.8.3574.dll, (Signed) 深圳市迅雷网络技术有限公司&
[Dangle IEPlugin]
&&{8B0F1B27-E483-42AD-B228A} &D:\Program Files (x86)\当乐游戏中心\npdliepluginv1.2.dll, (Signed) 北京当乐信息技术有限公司&
[迅雷资源关键字嗅探]
&&{9AA238FE--B188-05B6AEE76C3A} &F:\thunder\BHO\XlBrowserAddinKernel1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[SafeMon Class]
&&{B69F34DD-F0F9-42DC-9EDD-8D} &E:\Program Files (x86)\360\360Safe\safemon\safemon.dll, (Signed) &
[ICBC Anti-Phishing class]
&&{BBA-4c6b-91C0-BB} &D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\Icbc_AntiPhishing.dll, (Signed) 中国工商银行&
[Java(tm) Plug-In 2 SSV Helper]
&&{DBC85b-BC74-9C25C1C588A9} &e:\java7\bin\jp2ssv.dll, (Signed) Oracle Corporation&
[PPStream Video Acc Helper]
&&{FB4F-49F2-950F-A5998F9CEC6C} &e:\PPS.tv\PPStream\plugins\IEHelper.dll, (Signed) PPStream Inc.&
[]
&&{e2-4215-a47a-e800a446447a} &, &
[启动迅雷看看播放器]
&&{e2-4215-a47a-e800a446447a} &, &
[浩方电竞平台]
&&{0A155D3C-68E2-4215-A47A-E800A446447A} &e:\Program Files (x86)\Holdfast\platform 5.8.7\gameclient.exe, (Signed) 上海浩方在线信息技术有限公司&
[Dangle IEPlugin]
&&{8B0F1B27-E483-42AD-B228A} &D:\Program Files (x86)\当乐游戏中心\npdliepluginv1.2.dll, (Signed) 北京当乐信息技术有限公司&
[UpdateInstaller Class]
&&{1E525898-EE12-D} &C:\Windows\Downloaded Program Files\wCNTVLive202.dll, (Signed) &
[]
&&{C9--D2} &, &
[]
&&{002AE4F2-96AB-4dfa-AE2E-A84C} &, &
[]
&&{004BABF-8556-FCDB7F1FCA1E} &, &
[]
&&{0119CCC1-8EAC-43E9-AA7D-87F64B44AA4D} &, &
[]
&&{02E2D748-67F8-48B4-8AB4-0A} &, &
[]
&&{02E2D748-67F8-48B4-8AB4-0AA} &, &
[]
&&{E2-4215-A47A-E800A446447A} &, &
[UploadCtl Class]
&&{1-F342D9652F6} &C:\Users\Administrator\AppData\Roaming\baidu\Baidu Uploader\ieUploader.dll, (Signed) , Inc.&
[AliCertDOCtrl Class]
&&{08D512D2-7D97-4E22-B7DB-} &C:\Users\Administrator\AppData\Roaming\alipay\cf\alicdo.dll, (Signed) Alipay&
[]
&&{E2-4215-A47A-E800A446447A} &, &
[]
&&{0A155D3C-68E2-4215-A47A-E800A446447A} &, &
[迅雷FLV视频嗅探及下载支持代{过}{滤}理]
&&{0C27ADC4-E826--990D7E05545F} &E:\迅雷七\BHO\XlBrowserAddin1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[迅雷FLV视频嗅探及下载支持]
&&{0EA37B17-6B8B--F3A4AA69C27A} &E:\迅雷七\BHO\XlBrowserAddin1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[360sdbho Class]
&&{0F4BF955-A127-41B7-A998-78} &E:\Program Files (x86)\360\360sd\360sdbho.dll, (Signed) &
[]
&&{116BA71C--9A1F-C9D} &, &
[OnlineInstallCtrl Class]
&&{18689D3E-CF06-482F-AEB1-AA} &e:\Program Files (x86)\Funshion Online\2.8.6.74\funoictl.dll, TODO: &Company name&&
[PlayCtrl Class]
&&{-2f83-4cd6-911b-a313b8a2f296} &e:\Program Files (x86)\Baidu\BaiduPlayerBaiduYun\1.19.1.23\xbdyy.dll, (Signed) &
[PIPI Link Helper]
&&{1A3-4CAB-84EE-C814E1AE0D8F} &C:\Users\Administrator\AppData\Roaming\pipi\JfCheck.dll, (Signed) PIPI Tech.&
[WWPicUploadCtrl Class]
&&{1D6-4A42-890D-EE617AA1537D} &E:\Program Files (x86)\AliWangWang\7.21.19C\modules\1685\WWPictureUpload.dll, (Signed) Alibaba software (Shanghai) Corporation&
[iTrusPTA Class]
&&{1E0DFFCF-27FF-007349FEDA} &C:\Windows\SysWow64\aliedit\3.6.0.0\pta.dll, (Signed) iTruschina Co., Ltd.&
[UpdateInstaller Class]
&&{1E525898-EE12-D} &C:\Windows\Downloaded Program Files\wCNTVLive202.dll, (Signed) &
[]
&&{20E-41A9-954A-04DCCB1FD16C} &, &
[Windows Media Player]
&&{22D6F312-B0F6-11D0-94AB-E95} &C:\Windows\SysWOW64\wmpdxm.dll, (Signed) Microsoft Corporation&
[HTML Document]
&&{F9-11CF-8FD0-00AA00686F13} &C:\Windows\SysWOW64\mshtml.dll, (Signed) Microsoft Corporation&
[SSOLoginCtrl Class]
&&{26C3F8B0--AB2D-A1B494E71402} &E:\Program Files (x86)\AliWangWang\7.21.19C\AliIMSSOLogin.dll, (Signed) 阿里巴巴(中国)有限公司&
[]
&&{1-4de5-b23c-b875f0a8522f} &, &
[Axcleanctrl Class]
&&{36C-01C7-9C6D-10DACDFEA59C} &C:\Windows\SysWOW64\icbcclean.dll, (Signed) &
[WebDetectorBHO Class]
&&{43BEAFD9-E005-483D-A367-146BA6C8A32E} &C:\Users\Administrator\AppData\Local\Tudou\FeisuTudou\tudouDetector.dll, (Signed) 土豆网&
[UnityWebPlayer Control]
&&{-DE89-A-D46C3A781394} &C:\Users\Administrator\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx, (Signed) Unity Technologies ApS&
[Agent Class]
&&{-8FB2-4B3B-B29B-8B919B0EACCE} &E:\迅雷七\BHO\ThunderAgent7.2.8.3574.dll, (Signed) 深圳市迅雷网络技术有限公司&
[EditCtrl Class]
&&{488AB3-8F27-FA1AECAA8844} &C:\Windows\SysWow64\aliedit\3.6.0.0\aliedit.dll, (Signed) &
[PPS浏览器插件]
&&{4E6A8DA1-B-B036-B9E16EF26CAC} &e:\PPS.tv\PPStream\PPSPLU~1.DLL, (Signed) PPStream Inc.&
[QQPYChecker Class]
&&{-9DF7-45ef-88EF-F42C0EA33A43} &e:\Program Files (x86)\Tencent\QQWubi\2.0.313.400\QQImeChecker.dll, (Signed) Tencent&
[]
&&{5CBE9-434E-B807-118E6E5EA3B6} &, &
[WangWangX Class]
&&{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} &E:\Program Files (x86)\AliWangWang\7.21.19C\AliIMX.dll, (Signed) Alibaba software (Shanghai) Corporation.&
[]
&&{5E6A8DA1-B-B036-B9E16EF26CAC} &, &
[CAntiVersion Object]
&&{5EFE0AA6-B28B-41BD-9B3C-02AA3F79EA9A} &D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\AntiPhishingVer.dll, (Signed) 中国工商银行&
[迅雷发行IE支持]
&&{5FFF24BC-DC02--A8E2C93FE407} &E:\迅雷七\BHO\xlfxctrl1.0.1.64.dll, (Signed) 深圳市迅雷网络技术有限公司&
[Windows Media Player]
&&{6BF52A52-394A-11D3-B153-00C04F79FAA6} &%SystemRoot%\system32\wmp.dll, (Signed) N/A&
[SecCheck Class]
&&{6EAAD146-39C4-4F5C-A0A7-DAA160ABD907} &C:\Program Files (x86)\alipay\AlipayDHC\1.1.0.0\npAlipaydhc.dll, (Signed)
Inc. &
[Access UserInfo by Script]
&&{6EE9CD3E-A386-4DAE-DBF927AE} &E:\迅雷七\BHO\UserAgent1.0.2.10.dll, (Signed) 深圳市迅雷网络技术有限公司&
[AxInputControl Class]
&&{73E4740C-08EB-D0A7C9EE3CD} &C:\Windows\SysWOW64\InputControl.dll, (Signed) &
[Java(tm) Plug-In SSV Helper]
&&{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} &e:\java7\bin\ssv.dll, (Signed) Oracle Corporation&
[CertEnroll Class]
&&{7978461C-CC22-48F2-BC69-D} &C:\Windows\SysWow64\aliedit\3.6.0.0\itrusenroll.dll, (Signed) iTruschina Co., Ltd.&
[yy_checker]
&&{C60-47F8-BA06-90BA7261C3AE} &C:\Program Files (x86)\Common Files\duowan\yy\YYSSO\1.0.0.3\npChecker.dll, (Signed) 广州多玩信息技术有限公司&
[AxAssistComm Class]
&&{F9-4C88-8A45-D6B} &E:\Program Files\ICBCEbankTools\ICBCSetupIntegration\IcbcAssistComm.dll, (Signed) Industrial and Commercial Bank of China&
[360SafeLive]
&&{C--D416CB8059E3} &E:\Program Files (x86)\360\360Safe\Safelive.dll, (Signed) &
[Microsoft Web Browser]
&&{A-11D0-A96B-00C04FD705A2} &C:\Windows\SysWOW64\ieframe.dll, (Signed) Microsoft Corporation&
[迅雷下载支持]
&&{889D2FEB-98-1DD2C5261283} &E:\迅雷七\BHO\XunleiBHO7.2.8.3574.dll, (Signed) 深圳市迅雷网络技术有限公司&
[XML HTTP 4.0]
&&{88D969C5-F192-11D4-A65F-E5} &C:\Windows\SysWOW64\msxml4.dll, (Signed) Microsoft Corporation&
[XML DOM Document 6.0]
&&{88D96A05-F192-11D4-A65F-E5} &%SystemRoot%\System32\msxml6.dll, (Signed) N/A&
[Dangle IEPlugin]
&&{8B0F1B27-E483-42AD-B228A} &D:\Program Files (x86)\当乐游戏中心\npdliepluginv1.2.dll, (Signed) 北京当乐信息技术有限公司&
[SetupCtrl Class]
&&{8CBE9-434E-B807-118E6E5EA3B6} &C:\Windows\Downloaded Program Files\1376084\BaiduSetupAx_0.dll, (Signed) Baidu Inc.&
[AxSubmitControl Class]
&&{8D9E0B29-563C--5FF2AE77E1D2} &C:\Windows\SysWOW64\SubmitControl.dll, (Signed) &
[SecCtrl Class]
&&{8EB7C6CB-2DA6-4ABE-B2EA-EAC5A372E757} &C:\Windows\SysWow64\aliedit\3.6.0.0\npAliSecCtrl.dll, (Signed)
Inc. &
[IEKeyControl Class]
&&{93E730CA-32AA-4C56-B5FB-CFE} &C:\Windows\SysWOW64\IE_FULL_SCREEN.dll, (Signed) Industrial and Commercial Bank of China&
[BFWebBrowserIECtrl Class]
&&{E60-48EE-BD33-54BA1241D28A} &e:\Program Files (x86)\Baofeng\StormPlayer\npBFWebBrowserPlugin.dll, (Signed) Beijing Baofeng Inc.&
[OFrameObject Class]
&&{73-482E-B13C-776C048EC890} &C:\Program Files (x86)\Common Files\Thunder Network\KanKan\DapCtrl.2.3.2).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.&
[迅雷资源关键字嗅探]
&&{9AA238FE--B188-05B6AEE76C3A} &F:\thunder\BHO\XlBrowserAddinKernel1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[APlayer Control]
&&{A1-4B9D-91FC-B9C461DBE9DD} &C:\Program Files (x86)\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD&
[DapCtrl Class]
&&{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} &C:\Program Files (x86)\Common Files\Thunder Network\KanKan\DapCtrl.2.3.2).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.&
[SafeMon Class]
&&{B69F34DD-F0F9-42DC-9EDD-8D} &E:\Program Files (x86)\360\360Safe\safemon\safemon.dll, (Signed) &
[]
&&{BAEA-43BB-E1A8F42} &, &
[ICBC Anti-Phishing class]
&&{BBA-4C6B-91C0-BB} &D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\Icbc_AntiPhishing.dll, (Signed) 中国工商银行&
[FTNUpload Class]
&&{BDEACC50-F56D-4D60-860F-CF6ED1766D65} &C:\Program Files (x86)\Common Files\Tencent\TXFTN\TXFTNActiveX1.17.dll, (Signed) Tencent&
[AUDIO__MP3 Moniker Class]
&&{CD3AFA76-B84F-48F0-9393-7EDC} &%SystemRoot%\system32\wmp.dll, (Signed) N/A&
[Shockwave Flash Object]
&&{D27CDB6E-AE6D-11CF-96B8-} &C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_9_900_170.ocx, (Signed) Adobe Systems, Inc.&
[]
&&{DD8E-4B35-AB22-9B} &, &
[Java(tm) Plug-In 2 SSV Helper]
&&{DBC85B-BC74-9C25C1C588A9} &e:\java7\bin\jp2ssv.dll, (Signed) Oracle Corporation&
[xoliimpl Class]
&&{DD5BF6D1--9DFA-5C343CAF178E} &C:\Windows\xinstaller.dll, (Signed) 深圳市迅雷技术有限公司&
[PlayerCtrl Class]
&&{E05BC2A3-9A46-4a32-80C9-023A473F5B23} &C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\QzoneMusic.dll, (Signed) Tencent&
[BDBProtocolHelperImpl Class]
&&{ECD0-435C-AE0D-FA1} &e:\Program Files (x86)\Baidu\BaiduPlayer\3.2.1.107\bdbph.dll, (Signed) &
[TimwpDll.TimwpCheck]
&&{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} &E:\PROGRA~2\Tencent\QQ\bin\Timwp.dll, (Signed) Tencent&
[XML HTTP Request]
&&{ED8C108E--91A4-00C04F7969E8} &%SystemRoot%\System32\msxml3.dll, (Signed) N/A&
[PPLive Lite Class]
&&{EF0D1A14--A589-240C01EDC078} &C:\Program Files (x86)\Internet Explorer\PPLite\plugin\1.0.1.4562\pplugin2.dll, (Signed) &
[]
&&{F3E70CEA-956E-49CC-B444-73AFE593AD7F} &, &
[Storm AxPlayer Class]
&&{F06-494D-87E2-} &e:\Program Files (x86)\Baofeng\StormPlayer\webplayer\PlayerShell.dll, (Signed) 北京暴风科技股份有限公司&
[XML DOM Document]
&&{F6D90F11-9C73-11D3-B32E-00C04F990BB4} &%SystemRoot%\System32\msxml3.dll, (Signed) N/A&
[XML HTTP]
&&{F6D90F16-9C73-11D3-B32E-00C04F990BB4} &%SystemRoot%\System32\msxml3.dll, (Signed) N/A&
[PPStream Video Acc Helper]
&&{FB4F-49F2-950F-A5998F9CEC6C} &e:\PPS.tv\PPStream\plugins\IEHelper.dll, (Signed) PPStream Inc.&
[webmod Class]
&&{FEE3C8C5-9BEA-4079-AB36-63ECABFC7392} &C:\Windows\SysWow64\aliedit\3.6.0.0\alidcp.dll, (Signed)
Co.,Ltd&
[&使用&迅雷下载]
&&&E:\迅雷七\BHO\geturl.htm, N/A&
[&使用&迅雷下载全部链接]
&&&E:\迅雷七\BHO\GetAllUrl.htm, N/A&
[&使用&迅雷离线下载]
&&&E:\迅雷七\BHO\OfflineDownload.htm, N/A&
[使用P2pSearch下载]
&&&F:\神器末日审判\IE2EM.htm, N/A&
[使用云帆小说阅读器下载]
&&&C:\Windows\system32\getflbookurl.htm, N/A&
[使用云帆小说阅读器下载此链接]
&&&E:\Program Files (x86)\云帆小说阅读器\getflbookurl2.htm, N/A&
[使用旋风下载]
&&&, &
[使用旋风下载(&X)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xfgeturl.htm, N/A&
[使用旋风下载全部链接(&Q)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xfgetAllurl.htm, N/A&
[使用旋风极速下载(会员特权)(&J)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xftopspeed.htm, N/A&
[使用迅雷下载]
&&&, &
[使用迅雷下载全部链接]
&&&, &
[使用迅雷看看播放器播放]
&&&C:\Users\Public\Thunder Network\XMP4\Core\Program\XmpIEMenu.htm, N/A&
[使用迅雷精简版下载]
&&&e:\Program Files (x86)\Thunder Network\MiniThunder\BHO\minixlgeturl.htm, N/A&
[使用迅雷精简版下载全部链接]
&&&e:\Program Files (x86)\Thunder Network\MiniThunder\BHO\minixlgetAllurl.htm, N/A&
[保存到旋风空间(会员特权)(&K)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xfofflineonly.htm, N/A&
[导出到 Microsoft Office Excel(&X)]
&&&res://E:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000, N/A&
==================================
正在运行的进程
[PID: 1220 / SYSTEM][C:\Windows\SysWOW64\svchost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [c:\program files (x86)\kbox\kbox.dll]&&[Tianjing Tianji Advertising Media Co.,Ltd., 0, 0, 0, 5]
[PID: 1248 / SYSTEM][C:\Windows\SysWOW64\svchost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [c:\program files (x86)\netapps\nasvc.dll]&&[Legendsoft China (Beijing) Technology Limited, 0, 0, 0, 13]
[PID: 1292 / SYSTEM][C:\Program Files (x86)\STools\MSrv.exe]&&[Beijing Skycenter Technology Limited, 0, 0, 0, 2]
& & [C:\Program Files (x86)\STools\MSrv.dll]&&[Beijing Skycenter Technology Limited, 0, 0, 0, 51]
[PID: 1312 / SYSTEM][E:\Program Files (x86)\360\360Safe\deepscan\zhudongfangyu.exe]&&[, 3, 2, 2, 2021]
& & [E:\Program Files (x86)\360\360Safe\360base.dll]&&[, 1, 0, 0, 1018]
& & [E:\Program Files (x86)\360\360Safe\360util.dll]&&[, 1, 0, 0, 1063]
& & [E:\Program Files (x86)\360\360Safe\360conf.dll]&&[, 1, 0, 0, 1009]
& & [E:\Program Files (x86)\360\360Safe\deepscan\cloudcom2.dll]&&[, 3, 3, 9, 3128]
& & [E:\Program Files (x86)\360\360Safe\360leakfixplugin.dll]&&[, 1, 0, 0, 1006]
& & [E:\Program Files (x86)\360\360Safe\SoftMgr\360SoftMgrS.dll]&&[, 2, 1, 6, 1375]
& & [E:\Program Files (x86)\360\360Safe\360NetBase.dll]&&[, 7, 25, 0, 10]
& & [E:\Program Files (x86)\360\360Safe\deepscan\heavygate.dll]&&[, 3, 7, 9, 5]
& & [E:\Program Files (x86)\360\360Safe\deepscan\qutmload.dll]&&[, 7, 2, 1, 1035]
& & [E:\Program Files (x86)\360\360Safe\deepscan\bapi.dll]&&[, 2.0.0.1048]
[PID: 1692 / SYSTEM][C:\Program Files (x86)\alipay\alieditplus\AlipaySecSvc.exe]&&[Alipay Inc. , 1, 0, 37, 0]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
[PID: 1752 / SYSTEM][d:\Program Files (x86)\MyDrivers\DriverGenius2013\DgService.exe]&&[, 8.0.114.1003]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\PatchCore.dll]&&[, 8.0.114.1003]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\PnpSup.dll]&&[, 8.0.114.1003]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\cysvc.dll]&&[Kingsoft Corporation, ,7385]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dgroutemsg.dll]&&[, 7.0.522.1050]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dgdectrl.dll]&&[, ,47]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\kxebase.dll]&&[Kingsoft Corporation, ,1978]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\ksapi.dll]&&[Kingsoft Corporation, ,107]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\kdump.dll]&&[Kingsoft Corporation, ,3620]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dgmctrl.dll]&&[, ,62]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dghmpg.dll]&&[, ,2100]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\ksoft\kinfoc.dll]&&[Kingsoft Corporation, ,2906]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dgserhost.dll]&&[Kingsoft Corporation, ,202]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\kbinst.dll]&&[N/A, ]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dgdecs.dll]&&[, ,7]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\kxescan\kfcdetect.dll]&&[Kingsoft Corporation, ,3350]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\kxescan\sqlite.dll]&&[Kingsoft Corporation, ,781]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dglog.dll]&&[, ,2700]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\kxescan\ksbwdet2hipt.dll]&&[Kingsoft Corporation, ,3575]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dgleng.dll]&&[, ,2700]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\MydriversC.dll]&&[N/A, ]
[PID: 1164 / SYSTEM][C:\Windows\SysWOW64\PnkBstrA.exe]&&[N/A, ]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
[PID: 1780 / SYSTEM][C:\Windows\SysWOW64\svchost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\xlsp.dll]&&[深圳市迅雷网络技术有限公司, 1.0.1.308]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\MSVCP71.dll]&&[Microsoft Corporation, 7.10.6030.0]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\MSVCR71.dll]&&[Microsoft Corporation, 7.10.6030.0]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\XLBugHandler.dll]&&[, 2, 2, 0, 7]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\XLDocSer.dll]&&[深圳市迅雷网络技术有限公司, 1.0.1.318]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [C:\Users\Public\Thunder Network\KanKan\Pusher\xappdrv.1.0.0.15.dll]&&[, 1, 0, 0, 15]
[PID: 2244 / Administrator][D:\Program Files (x86)\当乐游戏中心\DjClientSupport.exe]&&[当乐科技有限公司, 1.0.0.1]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 1636 / Administrator][C:\Windows\System32\TiltWheelMouse.exe]&&[Pixart Imaging Inc, 1.0.0.2]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 2292 / Administrator][E:\Program Files (x86)\Cobra mouse driver\Cobra\Monitor.EXE]&&[Cobra, 1, 0, 0, 0]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files (x86)\Cobra mouse driver\Cobra\lan.dll]&&[, 1, 0, 0, 1]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 3088 / Administrator][C:\Program Files (x86)\STools\STools.exe]&&[Beijing Skycenter Technology Limited, 0, 0, 0, 46]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 3384 / Administrator][C:\Program Files (x86)\alipay\SafeTransaction\Alipaybsm.exe]&&[Alipay Inc. , 1, 0, 0, 36]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [C:\Windows\SysWow64\aliedit\3.6.0.0\alidcp.dll]&&[ Co.,Ltd, 2.0.0.6]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 4788 / Administrator][C:\Program Files (x86)\alipay\SafeTransaction\AlipaySafeTran.exe]&&[Alipay Inc. , 1, 1, 0, 1]
& & [C:\Program Files (x86)\alipay\SafeTransaction\AliPayST.dll]&&[阿里巴巴云计算有限公司, 1, 1, 0, 3]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [C:\Windows\SysWow64\aliedit\3.6.0.0\alidcp.dll]&&[ Co.,Ltd, 2.0.0.6]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 6836 / Administrator][E:\Games\World_of_Tanks\WorldOfTanks.exe]&&[Wargaming.net, 0, 8, 10, 0]
& & [E:\Games\World_of_Tanks\voip.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\vivoxsdk.dll]&&[Vivox Inc., 4, 5, ]
& & [E:\Games\World_of_Tanks\ortp.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\libsndfile-1.dll]&&[Vivox, 4, 5, ]
& & [E:\Games\World_of_Tanks\vivoxoal.dll]&&[Vivox, 4, 5, ]
& & [E:\Games\World_of_Tanks\vivoxplatform.dll]&&[Vivox, 4, 5, ]
& & [E:\Games\World_of_Tanks\libcurl.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\zlib1.dll]&&[Zlib, 1.2.3.2027]
& & [E:\Games\World_of_Tanks\umbraob32.dll]&&[Umbra Software Ltd., 0, 0, 0]
& & [E:\Games\World_of_Tanks\LIBEAY32.dll]&&[The OpenSSL Project, [url]http://www.openssl.org/[/url], 0.9.8l]
& & [E:\Games\World_of_Tanks\fmodex.dll]&&[Firelight Technologies, 4.42.03]
& & [E:\Games\World_of_Tanks\fmod_event_net.dll]&&[Firelight Technologies, 4.42.03]
& & [C:\Windows\system32\nvd3dum.dll]&&[NVIDIA Corporation, 9.18.13.1422]
& & [C:\Windows\system32\nvapi.dll]&&[NVIDIA Corporation, 9.18.13.1422]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [E:\Games\World_of_Tanks\7z.dll]&&[Igor Pavlov, 9.17 beta]
& & [E:\Games\World_of_Tanks\DeltaMAX.dll]&&[Indigo Rose Corporation, 2.0.1.0]
& & [E:\Games\World_of_Tanks\NxCooking.dll]&&[, 2, 7, 0, 3]
& & [E:\Games\World_of_Tanks\PhysXLoader.dll]&&[, 2, 7, 0, 3]
& & [E:\Games\World_of_Tanks\ssleay32.dll]&&[The OpenSSL Project, [url]http://www.openssl.org/[/url], 0.9.8l]
& & [E:\Games\World_of_Tanks\umbra.dll]&&[Umbra Software Ltd., 1, 5, 4, 0]
& & [E:\Games\World_of_Tanks\uwApi.dll]&&[Gametrix, 0, 0, 23, 0]
& & [E:\Games\World_of_Tanks\WOTBoxModule.dll]&&[, 1, 0, 0, 1]
& & [E:\Games\World_of_Tanks\res\awesomium\awesomium.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\icudt.dll]&&[The ICU Project, 4, 6, 0, 0]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
& & [E:\Program Files (x86)\360\360Safe\safemon\safemon.dll]&&[, 8, 3, 1, 1110]
[PID: 7196 / Administrator][C:\Windows\SysWOW64\ctfmon.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 8492 / Administrator][C:\Windows\SysWOW64\DllHost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 752 / Administrator][E:\Games\World_of_Tanks\res\awesomium\awesomium_process.exe]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\awesomium.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\icudt.dll]&&[The ICU Project, 4, 6, 0, 0]
& & [E:\Games\World_of_Tanks\res\awesomium\avcodec-53.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\avutil-51.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\avformat-53.dll]&&[N/A, ]
[PID: 3056 / Administrator][F:\原E盘东西\sreng扫描2\SREngLdr.EXE]&&[Smallfrogs Studio, 2.8.2.1321]
[PID: 7068 / Administrator][F:\原E盘东西\sreng扫描2\SREd71e171d.EXE]&&[Smallfrogs Studio, 2.8.2.1321]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [F:\原E盘东西\sreng扫描2\Upload\3rdUpd.DLL]&&[Smallfrogs Studio, 2, 1, 0, 15]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
==================================
文件关联
.TXT&&OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE&&OK. [&%1& %*]
.COM&&OK. [&%1& %*]
.PIF&&OK. [&%1& %*]
.REG&&OK. [regedit.exe &%1&]
.BAT&&OK. [&%1& %*]
.SCR&&OK. [&%1& /S]
.CHM&&OK. [&%SystemRoot%\hh.exe& %1]
.HLP&&Error. []
.INI&&OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF&&OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS&&Error. [%SystemRoot%\System32\WScript.exe &%1& %*]
.JS& &OK. [%SystemRoot%\System32\WScript.exe &%1& %*]
.LNK&&OK. [{0-}]
==================================
Winsock 提供者
GameLSP on MSAFD Tcpip [TCP/IP]
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
GameLSP on MSAFD Tcpip [UDP/IP]
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
GameLSP on MSAFD Tcpip [RAW/IP]
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
GameLSP IPLayer
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
N/A
==================================
进程特权扫描
N/A
==================================
计划任务
N/A
==================================
Windows 安全更新检查
N/A
==================================
API HOOK
入口点错误:FindFirstFileA (危险等级: 高,&&被下面模块所HOOK: 0xB9F7DD86)
==================================
隐藏进程
N/A
==================================
System Repair Engineer 2.8.2.1321
Smallfrogs ([url][/url])
Windows 7 Ultimate Edition Service Pack 1 (Build 7601) - 管理权限用户 - 完整功能
以下内容被选中:
& & Autorun.inf
& & HOSTS 文件
& & 进程特权扫描
& & 计划任务
& & API HOOK
& & 隐藏进程
启动项目
注册表
N/A
==================================
启动文件夹
N/A
==================================
服务
N/A
==================================
驱动程序
N/A
==================================
浏览器加载项
N/A
==================================
正在运行的进程
N/A
==================================
文件关联
N/A
==================================
Winsock 提供者
N/A
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
127.0.0.1
127.0.0.1 Fvid.
127.0.0.1 html.
127.0.0.1 valb.
127.0.0.1 valf.
127.0.0.1 valo.
127.0.0.1 valp.
127.0.0.1
127.0.0.1 speed.
127.0.0.1 urchin.
127.0.0.1
127.0.0.1 static.
127.0.0.1 valc.
127.0.0.1 vid.
127.0.0.1 walp.
120.92.249.145 [url][/url]
120.92.249.145
122.226.122.23
122.226.122.21
112.64.235.19
122.226.122.6
122.226.122.21
122.226.122.21
120.92.249.145
182.118.64.110 zz.net
122.226.122.21 att.3dmgame.net
==================================
进程特权扫描
N/A
==================================
计划任务
[已禁用] \\Adobe Flash Player Updater
& && &&&C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[已启用] \\DJServer
& && &&&D:\Program Files (x86)\当乐游戏中心\DjClientSupport.exe
[已禁用] \\PPSProtect
& && &&&E:\PPS.tv\PPStream\PPSProtect.exe auto
[已启用] \\RsDelayLauncher_{8A3-59E0B0A380}
& && &&&C:\Program Files (x86)\Rising\RMC\rsdelaylauncher.exe auto
[已启用] \\{2A608DBE-32D7-D-25AE}
& && &&&C:\Windows\system32\pcalua.exe -a E:\《[在论坛广告被屏蔽]》\uninstall.exe -d E:\《[在论坛广告被屏蔽]》\
[已启用] \\{891B8F03-C7F7-4DC5-8C6C-4D}
& && &&&C:\Windows\system32\pcalua.exe -a E:\软件\W7\QQWubi_Setup_2.0.313.400.exe -d E:\软件\W7
[已启用] \\{8BC-47F3-A0FC-ABB26CA48F4D}
& && &&&C:\Windows\system32\pcalua.exe -a C:\Users\ioewlk\AppData\Local\Temp\Temp1_网络驱动华硕官网.zip\Lan\LAN\Win7\setup.exe
[已启用] \\{CA1048A3-CF4C-4AC7-BF63-92FD4DD68253}
& && &&&C:\Windows\system32\pcalua.exe -a E:\downloadsetup.exe -d E:\
[已启用] \\{CE7BB023-D7AD-4029-A6CD-E04D1F0BBE87}
& && &&&C:\Windows\system32\pcalua.exe -a E:\PROGRA~2\CHINAG~1\iGame\INSTAL~1.EXE -d E:\PROGRA~2\CHINAG~1\iGame -c 1
[已启用] \Funshion\FSPlatform
& && &&&C:\Users\Administrator\funshion\funshiontools\FSPAP.exe -systray
[已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
& && &&&N/A
[已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
& && &&&N/A
[已禁用] \Microsoft\Windows\AppID\PolicyConverter
& && &&&%windir%\system32\appidpolicyconverter.exe
[已禁用] \Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck
& && &&&%windir%\system32\appidcertstorecheck.exe
[已启用] \Microsoft\Windows\Application Experience\AitAgent
& && &&&aitagent
[已启用] \Microsoft\Windows\Application Experience\ProgramDataUpdater
& && &&&%windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
[已启用] \Microsoft\Windows\Autochk\Proxy
& && &&&%windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
[已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
& && &&&BthUdTask.exe $(Arg0)
[已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask
& && &&&N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask
& && &&&N/A
[已禁用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
& && &&&N/A
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
& && &&&%SystemRoot%\System32\wsqmcons.exe
[已启用] \Microsoft\Windows\Defrag\ScheduledDefrag
& && &&&%windir%\system32\defrag.exe -c
[已启用] \Microsoft\Windows\Location\Notifications
& && &&&%windir%\System32\LocationNotifications.exe
[已启用] \Microsoft\Windows\Maintenance\WinSAT
& && &&&N/A
[已禁用] \Microsoft\Windows\Media Center\ActivateWindowsSearch
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
[已禁用] \Microsoft\Windows\Media Center\ConfigureInternetTimeService
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
[已禁用] \Microsoft\Windows\Media Center\DispatchRecoveryTasks
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ehDRMInit
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DRMInit
[已禁用] \Microsoft\Windows\Media Center\InstallPlayReady
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\mcupdate
& && &&&%SystemRoot%\ehome\mcupdate $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\OCURActivate
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
[已禁用] \Microsoft\Windows\Media Center\OCURDiscovery
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\PBDADiscovery
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW1
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW2
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PeriodicScanRetry
& && &&&%windir%\ehome\MCUpdate.exe -pscn 0
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\RecordingRestart
& && &&&%SystemRoot%\ehome\ehrec /RestartRecording
[已禁用] \Microsoft\Windows\Media Center\RegisterSearch
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ReindexSearchRoot
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\UpdateRecordPath
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
[已启用] \Microsoft\Windows\MobilePC\HotStart
& && &&&N/A
[已启用] \Microsoft\Windows\MUI\LPRemove
& && &&&%windir%\system32\lpremove.exe
[已启用] \Microsoft\Windows\Multimedia\SystemSoundsService
& && &&&N/A
[已启用] \Microsoft\Windows\NetTrace\GatherNetworkInfo
& && &&&%windir%\system32\gatherNetworkInfo.vbs
[已禁用] \Microsoft\Windows\Offline Files\Background Synchronization
& && &&&N/A
[已禁用] \Microsoft\Windows\Offline Files\Logon Synchronization
& && &&&N/A
[已启用] \Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
& && &&&%SystemRoot%\System32\powercfg.exe -energy -auto
[已启用] \Microsoft\Windows\Ras\MobilityManager
& && &&&N/A
[已禁用] \Microsoft\Windows\SideShow\AutoWake
& && &&&N/A
[已启用] \Microsoft\Windows\SideShow\GadgetManager
& && &&&N/A
[已禁用] \Microsoft\Windows\SideShow\SessionAgent
& && &&&N/A
[已禁用] \Microsoft\Windows\SideShow\SystemDataProviders
& && &&&N/A
[已禁用] \Microsoft\Windows\SystemRestore\SR
& && &&&%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1
& && &&&%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2
& && &&&%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[已启用] \Microsoft\Windows\Time Synchronization\SynchronizeTime
& && &&&%windir%\system32\sc.exe start w32time task_started
[已启用] \Microsoft\Windows\UPnP\UPnPHostConfig
& && &&&sc.exe config upnphost start= auto
[已禁用] \Microsoft\Windows\User Profile Service\HiveUploadTask
& && &&&N/A
[已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting
& && &&&%windir%\system32\wermgr.exe -queuereporting
[已启用] \Microsoft\Windows\Windows Media Sharing\UpdateLibrary
& && &&&&%ProgramFiles%\Windows Media Player\wmpnscfg.exe&
[已启用] \Microsoft\Windows\WindowsBackup\ConfigNotification
& && &&&%systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
[已禁用] \Microsoft\Windows\WindowsColorSystem\Calibration Loader
& && &&&N/A
[已启用] \Microsoft\Windows\Wininet\CacheTask
& && &&&N/A
==================================
Windows 安全更新检查
N/A
==================================
API HOOK
入口点错误:FindFirstFileA (危险等级: 高,&&被下面模块所HOOK: 0xB9F7DD86)
==================================
隐藏进程
N/A
==================================
不形于色 发表于
大神,帮我看一下日志
当乐游戏中心是什么?
c:\program files (x86)\woxiuclient\woxiuclient.exe& -startm
这个呢??
360急救箱强力模式有无尝试?
不形于色 发表于
大神,帮我看一下日志
貌似没什么异常,你是不是经常浏览什么网站然后那个网站偷偷把瑞星安装包放到你电脑上了?
卸载不干净的问题,瑞星要用系统自带的卸载删除工具来删除
卸载瑞星软件部署系统即可
hez2010 发表于
貌似没什么异常,你是不是经常浏览什么网站然后那个网站偷偷把瑞星安装包放到你电脑上了?
经常上youtube,用的hao123,这个我不敢轻易动,因为要Fan{过}{滤}Qiang,估计就是上这个网站绑了RS,不知道怎么单独找出来
Copyright & KaFan & All Rights Reserved.
Powered by Discuz! X3.1( 苏ICP备号 ) GMT+8,}
电脑里自动安装瑞星,是悄悄安装的,已经几次了,删除了又悄悄安装
救命呀。。。
换杀软为瑞星
1.按照我的签名扫描一份sreng日志上传。
2.尝试用360急救箱开强力模式处理,并且尝试装上360出品的某个小工具——软件捆绑净化器。
3.最近有没有运行什么可疑的文件?
zhou0197 发表于
1.按照我的签名扫描一份sreng日志上传。
2.尝试用360急救箱开强力模式处理,并且尝试装上360出品的某个小 ...
下了360的软件,多一个瑞星全球部署软件
zhou0197 发表于
1.按照我的签名扫描一份sreng日志上传。
2.尝试用360急救箱开强力模式处理,并且尝试装上360出品的某个小 ...
大神,帮我看一下日志
System Repair Engineer 2.8.2.1321
Smallfrogs ([url][/url])
Windows 7 Ultimate Edition Service Pack 1 (Build 7601) - 管理权限用户 - 完整功能
以下内容被选中:
& & 所有的启动项目(包括注册表、启动文件夹、服务等)
& & 浏览器加载项
& & 正在运行的进程(包括进程模块信息)
& & 文件关联
& & Winsock 提供者
& & API HOOK
& & 隐藏进程
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
& & &WoxiuClient&&&C:\Program Files (x86)\woxiuclient\woxiuclient.exe& -startM&&&[File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
& & &Cobra&&&e:\Program Files (x86)\Cobra mouse driver\Cobra\Monitor.exe&&&&[Cobra]
& & &stools tray&&&C:\Program Files (x86)\STools\stools.exe& -tray&&&[(Verified)Beijing Skycenter Technology Limited]
& & &kxesc&&&e:\program files (x86)\kingsoft\kingsoft antivirus\kxetray.exe& -autorun&&&[File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
& & &shell&&explorer.exe&&&[(Verified)Microsoft Windows]
& & &Userinit&&C:\Windows\system32\UserInit.exe,&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
& & &AppInit_DLLs&&&&&[N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
& & &WebCheck&&&&&[N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{22d6f312-b0f6-11d0-94ab-e95}]
& & &Microsoft Windows Media Player&&%SystemRoot%\system32\unregmp2.exe /ShowWMP&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09--FED}]
& & &Themes Setup&&%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll&&&[File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
& & &Microsoft Windows&&&%ProgramFiles(x86)%\Windows Mail\WinMail.exe& OCInstallUserConfigOE&&&[File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
& & &Microsoft Windows Media Player&&%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{-ECBD-11cf-8B85-00AA005B4340}]
& & &Windows Desktop Update&®svr32.exe /s /n /i:U shell32.dll&&&[(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018--5476DBF70820}]
& & &N/A&&C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install&&&[(Verified)Microsoft Corporation]
==================================
启动文件夹
[Cobra driver]
&&&C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cobra driver.lnk --& E:\PROGRA~2\COBRAM~1\Cobra\Monitor.EXE [Cobra]&&N&
[Cobra driver]
&&&C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cobra driver.lnk --& E:\PROGRA~2\COBRAM~1\Cobra\Monitor.EXE [Cobra]&&N&
==================================
服务
[360 杀毒实时防护加载服务 / 360rp][Stopped/Manual Start]
&&&&E:\Program Files (x86)\360\360sd\360rps.exe&&&&
[Acronis OS Selector Reinstall Service / AcronisOSSReinstallSvc][Stopped/Auto Start]
&&&&C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe&&&N/A&
[Adobe Flash Player Update Service / AdobeFlashPlayerUpdateSvc][Stopped/Manual Start]
&&&C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe&&Adobe Systems Incorporated&
[Application Experience / AeLookupSvc][Running/Manual Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\aelupsvc.dll&&Microsoft Corporation&
[Alipay security service / AlipaySecSvc][Running/Auto Start]
&&&&C:\Program Files (x86)\alipay\alieditplus\AlipaySecSvc.exe&&&Alipay Inc.&
[Application Identity / AppIDSvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation--&%SystemRoot%\System32\appidsvc.dll&&Microsoft Corporation&
[Application Information / Appinfo][Running/Manual Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\appinfo.dll&&Microsoft Corporation&
[Windows Audio Endpoint Builder / AudioEndpointBuilder][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\Audiosrv.dll&&Microsoft Corporation&
[Windows Audio / AudioSrv][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted--&%SystemRoot%\System32\Audiosrv.dll&&Microsoft Corporation&
[ActiveX Installer (AxInstSV) / AxInstSV][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k AxInstSVGroup--&%SystemRoot%\System32\AxInstSV.dll&&Microsoft Corporation&
[BitLocker Drive Encryption Service / BDESVC][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\bdesvc.dll&&Microsoft Corporation&
[BFAssistantSvc / BFAssistantSvc][Stopped/Manual Start]
&&&e:\Program Files (x86)\Baofeng\PhoneAssistant\BFAssistantSvc.exe&&N/A&
[Base Filtering Engine / BFE][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork--&%SystemRoot%\System32\bfe.dll&&Microsoft Corporation&
[Background Intelligent Transfer Service / BITS][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\qmgr.dll&&Microsoft Corporation&
[Computer Browser / Browser][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\browser.dll&&Microsoft Corporation&
[Bluetooth Support Service / bthserv][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k bthsvcs--&%SystemRoot%\system32\bthserv.dll&&Microsoft Corporation&
[Certificate Propagation / CertPropSvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\certprop.dll&&Microsoft Corporation&
[Offline Files / CscService][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\cscsvc.dll&&Microsoft Corporation&
[DCOM Server Process Launcher / DcomLaunch][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k DcomLaunch--&%SystemRoot%\system32\rpcss.dll&&Microsoft Corporation&
[Disk Defragmenter / defragsvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k defragsvc--&%Systemroot%\System32\defragsvc.dll&&Microsoft Corporation&
[DriverGenius PNP Service / DGPNPSEV][Running/Auto Start]
&&&d:\Program Files (x86)\MyDrivers\DriverGenius2013\DgService.exe&&&
[DNS Client / Dnscache][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k NetworkService--&%SystemRoot%\System32\dnsrslvr.dll&&Microsoft Corporation&
[Wired AutoConfig / dot3svc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\dot3svc.dll&&Microsoft Corporation&
[Diagnostic Policy Service / DPS][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork--&%SystemRoot%\system32\dps.dll&&Microsoft Corporation&
[DTLService / DTLService][Stopped/Manual Start]
&&&D:\Program Files\DriveTheLife2012\DTLService.exe&&深圳市驱动人生软件技术有限公司&
[Extensible Authentication Protocol / EapHost][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\eapsvc.dll&&Microsoft Corporation&
[F-Prot Antivirus Update Monitor / F-Prot Antivirus Update Monitor][Stopped/Auto Start]
&&&&&&(File is missing)&
[ICBC Daemon Service / ICBC Daemon Service][Running/Auto Start]
&&&D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN64\IcbcDaemon_64.exe&&N/A&
[IKE and AuthIP IPsec Keying Modules / IKEEXT][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\System32\ikeext.dll&&Microsoft Corporation&
[PnP-X IP Bus Enumerator / IPBusEnum][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\system32\ipbusenum.dll&&Microsoft Corporation&
[IP Helper / iphlpsvc][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k NetSvcs--&%SystemRoot%\System32\iphlpsvc.dll&&Microsoft Corporation&
[NVIDIA Display Driver Service / nvsvc][Stopped/Auto Start]
&&&&&(File is missing)&
[Peer Networking Identity Manager / p2pimsvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\pnrpsvc.dll&&Microsoft Corporation&
[Peer Networking Grouping / p2psvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\p2psvc.dll&&Microsoft Corporation&
[Program Compatibility Assistant Service / PcaSvc][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\pcasvc.dll&&Microsoft Corporation&
[BranchCache / PeerDistSvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k PeerDist--&%SystemRoot%\system32\peerdistsvc.dll&&Microsoft Corporation&
[Plug and Play / PlugPlay][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k DcomLaunch--&%SystemRoot%\system32\umpnpmgr.dll&&Microsoft Corporation&
[PnkBstrA / PnkBstrA][Running/Auto Start]
&&&C:\Windows\system32\PnkBstrA.exe&&N/A&
[PNRP Machine Name Publication Service / PNRPAutoReg][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\pnrpauto.dll&&Microsoft Corporation&
[Peer Name Resolution Protocol / PNRPsvc][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServicePeerNet--&%SystemRoot%\system32\pnrpsvc.dll&&Microsoft Corporation&
[IPsec Policy Agent / PolicyAgent][Running/Manual Start]
&&&C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted--&%SystemRoot%\System32\ipsecsvc.dll&&Microsoft Corporation&
[Power / Power][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k DcomLaunch--&%SystemRoot%\system32\umpo.dll&&Microsoft Corporation&
[User Profile Service / ProfSvc][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%systemroot%\system32\profsvc.dll&&Microsoft Corporation&
[SToolSrv / SToolSrv][Running/Auto Start]
&&&C:\Program Files (x86)\STools\MSrv.exe&&Beijing Skycenter Technology Limited&
[Microsoft Software Shadow Copy Provider / swprv][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k swprv--&%Systemroot%\System32\swprv.dll&&Microsoft Corporation&
[Superfetch / SysMain][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%systemroot%\system32\sysmain.dll&&Microsoft Corporation&
[Tablet PC Input Service / TabletInputService][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\TabSvc.dll&&Microsoft Corporation&
[TPM Base Services / TBS][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation--&%SystemRoot%\System32\tbssvc.dll&&Microsoft Corporation&
[Remote Desktop Services / TermService][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k NetworkService--&%SystemRoot%\System32\termsrv.dll&&Microsoft Corporation&
[Themes / Themes][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k netsvcs--&%SystemRoot%\system32\themeservice.dll&&Microsoft Corporation&
[Thread Ordering Server / THREADORDER][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalService--&%SystemRoot%\system32\mmcss.dll&&Microsoft Corporation&
[Distributed Link Tracking Client / TrkWks][Stopped/Manual Start]
&&&C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\trkwks.dll&&Microsoft Corporation&
[VIA Karaoke digital mixer Service / VIAKaraokeService][Running/Auto Start]
&&&C:\Windows\system32\viakaraokesrv.exe&&VIA Technologies, Inc.&
[Windows Defender / WinDefend][Running/Auto Start]
&&&C:\Windows\System32\svchost.exe -k secsvcs--&%ProgramFiles%\Windows Defender\mpsvc.dll&&N/A&
[Windows Management Instrumentation / Winmgmt][Running/Auto Start]
&&&C:\Windows\system32\svchost.exe -k netsvcs--&%SystemRoot%\system32\wbem\WMIsvc.dll&&Microsoft Corporation&
[WLAN AutoConfig / Wlansvc][Stopped/Manual Start]
&&&C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted--&%SystemRoot%\System32\wlansvc.dll&&Microsoft Corporation&
[主动防御 / ZhuDongFangYu][Running/Auto Start]
&&&&E:\Program Files (x86)\360\360Safe\deepscan\zhudongfangyu.exe&&&&
[捆绑软件拦截器服务 / 360ai][Stopped/Manual Start]
&&&&E:\Program Files\360\360AI\360AIs.exe&&&&
==================================
驱动程序
[360Safe Anti Hacker Service / 360AntiHacker][Running/System Start]
&&&System32\Drivers\360AntiHacker64.sys&&&
[360AvFlt mini-filter driver / 360AvFlt][Stopped/Manual Start]
&&&system32\DRIVERS\360AvFlt.sys&&&
[360Box mini-filter driver / 360Box64][Running/System Start]
&&&system32\DRIVERS\360Box64.sys&&&
[360Safe Camera Filter Service / 360Camera][Running/System Start]
&&&System32\Drivers\360Camera64.sys&&&
[360FsFlt mini-filter driver / 360FsFlt][Running/System Start]
&&&system32\DRIVERS\360FsFlt.sys&&&
[360netmon / 360netmon][Running/System Start]
&&&system32\DRIVERS\360netmon.sys&&&
[adp94xx / adp94xx][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\adp94xx.sys&&Adaptec, Inc.&
[adpahci / adpahci][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\adpahci.sys&&Adaptec, Inc.&
[adpu320 / adpu320][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\adpu320.sys&&Adaptec, Inc.&
[aliide / aliide][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\aliide.sys&&Acer Laboratories Inc.&
[amdsata / amdsata][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\amdsata.sys&&Advanced Micro Devices&
[amdsbs / amdsbs][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\amdsbs.sys&&AMD Technologies Inc.&
[amdxata / amdxata][Running/Boot Start]
&&&\SystemRoot\system32\drivers\amdxata.sys&&Advanced Micro Devices&
[Apowersoft_AudioDevice / Apowersoft_AudioDevice][Stopped/Manual Start]
&&&system32\drivers\Apowersoft_AudioDevice.sys&&Wondershare&
[arc / arc][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\arc.sys&&Adaptec, Inc.&
[arcsas / arcsas][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\arcsas.sys&&Adaptec, Inc.&
[Broadcom NetXtreme II VBD / b06bdrv][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\bxvbda.sys&
[Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 / b57nd60a][Stopped/Manual Start]
&&&system32\DRIVERS\b57nd60a.sys&
[BAPIDRV / BAPIDRV][Running/System Start]
&&&\SystemRoot\System32\Drivers\BAPIDRV64.SYS&&&
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\BrFiltLo.sys&
[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\BrFiltUp.sys&
[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\Brserid.sys&
[Brother WDM Serial driver / BrSerWdm][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\BrSerWdm.sys&
[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\BrUsbMdm.sys&
[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
&&&\SystemRoot\System32\Drivers\BrUsbSer.sys&
[cmdide / cmdide][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\cmdide.sys&&CMD Technology, Inc.&
[ComputerZ_x64 / ComputerZ_x64][Stopped/Manual Start]
&&&\??\E:\Program Files (x86)\Ludashi\ComputerZ_x64.sys&&&
[cpuz135 / cpuz135][Stopped/Manual Start]
&&&\??\C:\Users\ioewlk\AppData\Local\Temp\cpuz135\cpuz135_x64.sys&&N/A&
[DgSafe / DgSafe][Running/Auto Start]
&&&\??\C:\Windows\system32\drivers\DgSafe.sys&&&
[RuanMei Disk Activity Monitor Driver / diskactmon][Stopped/Manual Start]
&&&\??\C:\Windows\system32\drivers\diskactmon.sys&&&
[DTLD48EC12D954B431eABA20 / DTLD48EC12D954B431eABA20][Running/System Start]
&&&\??\D:\Program Files\DriveTheLife2012\DtlSrvPro64.dat&&N/A&
[DAEMON Tools Virtual Bus Driver / dtsoftbus01][Running/System Start]
&&&system32\DRIVERS\dtsoftbus01.sys&&Disc Soft Ltd&
[Broadcom NetXtreme II 10 GigE VBD / ebdrv][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\evbda.sys&
[elxstor / elxstor][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\elxstor.sys&&Emulex&
[Hauppauge Consumer Infrared Receiver / hcw85cir][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\hcw85cir.sys&&Hauppauge Computer Works, Inc.&
[HpSAMD / HpSAMD][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\HpSAMD.sys&&Hewlett-Packard Company&
[HWCore / HWCore][Stopped/Manual Start]
&&&\??\D:\Program Files\DriveTheLife2012\hwcore.sys&&N/A&
[HWiNFO32/64 Kernel Driver / HWiNFO32][Stopped/Manual Start]
&&&\??\C:\Users\ADMINI~1\AppData\Local\Temp\Mydrivers64A.SYS&&N/A&
[iaStorV / iaStorV][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\iaStorV.sys&&Intel Corporation&
[iirsp / iirsp][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\iirsp.sys&&Intel Corp./ICP vortex GmbH&
[ksapi64 / ksapi64][Stopped/Manual Start]
&&&\??\C:\Windows\system32\drivers\ksapi64.sys&&N/A&
[LSI_FC / LSI_FC][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_fc.sys&&LSI Corporation&
[LSI_SAS / LSI_SAS][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_sas.sys&&LSI Corporation&
[LSI_SAS2 / LSI_SAS2][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_sas2.sys&&LSI Corporation&
[LSI_SCSI / LSI_SCSI][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\lsi_scsi.sys&&LSI Corporation&
[megasas / megasas][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\megasas.sys&&LSI Corporation&
[MegaSR / MegaSR][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\MegaSR.sys&&LSI Corporation, Inc.&
[ATK0110 ACPI UTILITY / MTsensor][Running/Manual Start]
&&&system32\DRIVERS\ASACPI.sys&&&
[nfrd960 / nfrd960][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\nfrd960.sys&&IBM Corporation&
[WinPcap Packet Driver (NPF) / NPF][Stopped/Manual Start]
&&&system32\drivers\NPF.sys&&CACE Technologies, Inc.&
[Service for NVIDIA High Definition Audio Driver / NVHDA][Running/Manual Start]
&&&system32\drivers\nvhda64v.sys&&NVIDIA Corporation&
[nvlddmkm / nvlddmkm][Running/Manual Start]
&&&system32\DRIVERS\nvlddmkm.sys&&NVIDIA Corporation&
[nvraid / nvraid][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\nvraid.sys&&NVIDIA Corporation&
[nvstor / nvstor][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\nvstor.sys&&NVIDIA Corporation&
[PAN3509 Mouse Driver / PAN3509Fltr][Running/Manual Start]
&&&system32\drivers\PAN3509.sys&&XXX&
[PRODIGY / PRODIGY][Stopped/Manual Start]
&&&System32\Drivers\PRODIGY.SYS&&B-phreaks&
[ql2300 / ql2300][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\ql2300.sys&&QLogic Corporation&
[ql40xx / ql40xx][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\ql40xx.sys&&QLogic Corporation&
[Realtek 8167 NT Driver / RTL8167][Running/Manual Start]
&&&system32\DRIVERS\Rt64win7.sys&&Realtek&
[360Safe Search Hot Key Service / SearchHotKey][Running/System Start]
&&&System32\Drivers\SearchHotKeyx64.sys&&360安全中心&
[SiSRaid2 / SiSRaid2][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\SiSRaid2.sys&&Silicon Integrated Systems Corp.&
[SiSRaid4 / SiSRaid4][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\sisraid4.sys&&Silicon Integrated Systems&
[Acronis Snapshots Manager / snapman][Running/Boot Start]
&&&\SystemRoot\system32\DRIVERS\snapman.sys&&Acronis&
[stexstor / stexstor][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\stexstor.sys&&Promise Technology&
[TesSafe / TesSafe][Stopped/Manual Start]
&&&\??\C:\Windows\system32\TesSafe.sys&&TENCENT&
[HID-compliand device / t_mouse.sys][Stopped/Manual Start]
&&&system32\DRIVERS\t_mouse.sys&&N/A&
[VGPU / VGPU][Stopped/Manual Start]
&&&System32\drivers\rdvgkmd.sys&&N/A&
[VIA High Definition Audio Driver Service / VIAHdAudAddService][Running/Manual Start]
&&&system32\drivers\viahduaa.sys&&VIA Technologies, Inc.&
[viaide / viaide][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\viaide.sys&&VIA Technologies, Inc.&
[vsmraid / vsmraid][Stopped/Manual Start]
&&&\SystemRoot\system32\drivers\vsmraid.sys&&VIA Technologies Inc.,Ltd&
==================================
浏览器加载项
[]
&&{C9--D2} &, &
[迅雷FLV视频嗅探及下载支持]
&&{0EA37B17-6B8B--F3A4AA69C27A} &E:\迅雷七\BHO\XlBrowserAddin1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[360sdbho Class]
&&{0F4BF955-A127-41B7-A998-78} &E:\Program Files (x86)\360\360sd\360sdbho.dll, (Signed) &
[PIPI Link Helper]
&&{1A3-4CAB-84EE-C814E1AE0D8F} &C:\Users\Administrator\AppData\Roaming\pipi\JfCheck.dll, (Signed) PIPI Tech.&
[WebDetectorBHO Class]
&&{43BEAFD9-E005-483D-A367-146BA6C8A32E} &C:\Users\Administrator\AppData\Local\Tudou\FeisuTudou\tudouDetector.dll, (Signed) 土豆网&
[]
&&{4ADBABBD-E1CA-4f11-BD01-73B0B6E4B5BA} &, &
[Java(tm) Plug-In SSV Helper]
&&{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} &e:\java7\bin\ssv.dll, (Signed) Oracle Corporation&
[迅雷下载支持]
&&{889D2FEB-98-1DD2C5261283} &E:\迅雷七\BHO\XunleiBHO7.2.8.3574.dll, (Signed) 深圳市迅雷网络技术有限公司&
[Dangle IEPlugin]
&&{8B0F1B27-E483-42AD-B228A} &D:\Program Files (x86)\当乐游戏中心\npdliepluginv1.2.dll, (Signed) 北京当乐信息技术有限公司&
[迅雷资源关键字嗅探]
&&{9AA238FE--B188-05B6AEE76C3A} &F:\thunder\BHO\XlBrowserAddinKernel1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[SafeMon Class]
&&{B69F34DD-F0F9-42DC-9EDD-8D} &E:\Program Files (x86)\360\360Safe\safemon\safemon.dll, (Signed) &
[ICBC Anti-Phishing class]
&&{BBA-4c6b-91C0-BB} &D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\Icbc_AntiPhishing.dll, (Signed) 中国工商银行&
[Java(tm) Plug-In 2 SSV Helper]
&&{DBC85b-BC74-9C25C1C588A9} &e:\java7\bin\jp2ssv.dll, (Signed) Oracle Corporation&
[PPStream Video Acc Helper]
&&{FB4F-49F2-950F-A5998F9CEC6C} &e:\PPS.tv\PPStream\plugins\IEHelper.dll, (Signed) PPStream Inc.&
[]
&&{e2-4215-a47a-e800a446447a} &, &
[启动迅雷看看播放器]
&&{e2-4215-a47a-e800a446447a} &, &
[浩方电竞平台]
&&{0A155D3C-68E2-4215-A47A-E800A446447A} &e:\Program Files (x86)\Holdfast\platform 5.8.7\gameclient.exe, (Signed) 上海浩方在线信息技术有限公司&
[Dangle IEPlugin]
&&{8B0F1B27-E483-42AD-B228A} &D:\Program Files (x86)\当乐游戏中心\npdliepluginv1.2.dll, (Signed) 北京当乐信息技术有限公司&
[UpdateInstaller Class]
&&{1E525898-EE12-D} &C:\Windows\Downloaded Program Files\wCNTVLive202.dll, (Signed) &
[]
&&{C9--D2} &, &
[]
&&{002AE4F2-96AB-4dfa-AE2E-A84C} &, &
[]
&&{004BABF-8556-FCDB7F1FCA1E} &, &
[]
&&{0119CCC1-8EAC-43E9-AA7D-87F64B44AA4D} &, &
[]
&&{02E2D748-67F8-48B4-8AB4-0A} &, &
[]
&&{02E2D748-67F8-48B4-8AB4-0AA} &, &
[]
&&{E2-4215-A47A-E800A446447A} &, &
[UploadCtl Class]
&&{1-F342D9652F6} &C:\Users\Administrator\AppData\Roaming\baidu\Baidu Uploader\ieUploader.dll, (Signed) , Inc.&
[AliCertDOCtrl Class]
&&{08D512D2-7D97-4E22-B7DB-} &C:\Users\Administrator\AppData\Roaming\alipay\cf\alicdo.dll, (Signed) Alipay&
[]
&&{E2-4215-A47A-E800A446447A} &, &
[]
&&{0A155D3C-68E2-4215-A47A-E800A446447A} &, &
[迅雷FLV视频嗅探及下载支持代{过}{滤}理]
&&{0C27ADC4-E826--990D7E05545F} &E:\迅雷七\BHO\XlBrowserAddin1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[迅雷FLV视频嗅探及下载支持]
&&{0EA37B17-6B8B--F3A4AA69C27A} &E:\迅雷七\BHO\XlBrowserAddin1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[360sdbho Class]
&&{0F4BF955-A127-41B7-A998-78} &E:\Program Files (x86)\360\360sd\360sdbho.dll, (Signed) &
[]
&&{116BA71C--9A1F-C9D} &, &
[OnlineInstallCtrl Class]
&&{18689D3E-CF06-482F-AEB1-AA} &e:\Program Files (x86)\Funshion Online\2.8.6.74\funoictl.dll, TODO: &Company name&&
[PlayCtrl Class]
&&{-2f83-4cd6-911b-a313b8a2f296} &e:\Program Files (x86)\Baidu\BaiduPlayerBaiduYun\1.19.1.23\xbdyy.dll, (Signed) &
[PIPI Link Helper]
&&{1A3-4CAB-84EE-C814E1AE0D8F} &C:\Users\Administrator\AppData\Roaming\pipi\JfCheck.dll, (Signed) PIPI Tech.&
[WWPicUploadCtrl Class]
&&{1D6-4A42-890D-EE617AA1537D} &E:\Program Files (x86)\AliWangWang\7.21.19C\modules\1685\WWPictureUpload.dll, (Signed) Alibaba software (Shanghai) Corporation&
[iTrusPTA Class]
&&{1E0DFFCF-27FF-007349FEDA} &C:\Windows\SysWow64\aliedit\3.6.0.0\pta.dll, (Signed) iTruschina Co., Ltd.&
[UpdateInstaller Class]
&&{1E525898-EE12-D} &C:\Windows\Downloaded Program Files\wCNTVLive202.dll, (Signed) &
[]
&&{20E-41A9-954A-04DCCB1FD16C} &, &
[Windows Media Player]
&&{22D6F312-B0F6-11D0-94AB-E95} &C:\Windows\SysWOW64\wmpdxm.dll, (Signed) Microsoft Corporation&
[HTML Document]
&&{F9-11CF-8FD0-00AA00686F13} &C:\Windows\SysWOW64\mshtml.dll, (Signed) Microsoft Corporation&
[SSOLoginCtrl Class]
&&{26C3F8B0--AB2D-A1B494E71402} &E:\Program Files (x86)\AliWangWang\7.21.19C\AliIMSSOLogin.dll, (Signed) 阿里巴巴(中国)有限公司&
[]
&&{1-4de5-b23c-b875f0a8522f} &, &
[Axcleanctrl Class]
&&{36C-01C7-9C6D-10DACDFEA59C} &C:\Windows\SysWOW64\icbcclean.dll, (Signed) &
[WebDetectorBHO Class]
&&{43BEAFD9-E005-483D-A367-146BA6C8A32E} &C:\Users\Administrator\AppData\Local\Tudou\FeisuTudou\tudouDetector.dll, (Signed) 土豆网&
[UnityWebPlayer Control]
&&{-DE89-A-D46C3A781394} &C:\Users\Administrator\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx, (Signed) Unity Technologies ApS&
[Agent Class]
&&{-8FB2-4B3B-B29B-8B919B0EACCE} &E:\迅雷七\BHO\ThunderAgent7.2.8.3574.dll, (Signed) 深圳市迅雷网络技术有限公司&
[EditCtrl Class]
&&{488AB3-8F27-FA1AECAA8844} &C:\Windows\SysWow64\aliedit\3.6.0.0\aliedit.dll, (Signed) &
[PPS浏览器插件]
&&{4E6A8DA1-B-B036-B9E16EF26CAC} &e:\PPS.tv\PPStream\PPSPLU~1.DLL, (Signed) PPStream Inc.&
[QQPYChecker Class]
&&{-9DF7-45ef-88EF-F42C0EA33A43} &e:\Program Files (x86)\Tencent\QQWubi\2.0.313.400\QQImeChecker.dll, (Signed) Tencent&
[]
&&{5CBE9-434E-B807-118E6E5EA3B6} &, &
[WangWangX Class]
&&{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} &E:\Program Files (x86)\AliWangWang\7.21.19C\AliIMX.dll, (Signed) Alibaba software (Shanghai) Corporation.&
[]
&&{5E6A8DA1-B-B036-B9E16EF26CAC} &, &
[CAntiVersion Object]
&&{5EFE0AA6-B28B-41BD-9B3C-02AA3F79EA9A} &D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\AntiPhishingVer.dll, (Signed) 中国工商银行&
[迅雷发行IE支持]
&&{5FFF24BC-DC02--A8E2C93FE407} &E:\迅雷七\BHO\xlfxctrl1.0.1.64.dll, (Signed) 深圳市迅雷网络技术有限公司&
[Windows Media Player]
&&{6BF52A52-394A-11D3-B153-00C04F79FAA6} &%SystemRoot%\system32\wmp.dll, (Signed) N/A&
[SecCheck Class]
&&{6EAAD146-39C4-4F5C-A0A7-DAA160ABD907} &C:\Program Files (x86)\alipay\AlipayDHC\1.1.0.0\npAlipaydhc.dll, (Signed)
Inc. &
[Access UserInfo by Script]
&&{6EE9CD3E-A386-4DAE-DBF927AE} &E:\迅雷七\BHO\UserAgent1.0.2.10.dll, (Signed) 深圳市迅雷网络技术有限公司&
[AxInputControl Class]
&&{73E4740C-08EB-D0A7C9EE3CD} &C:\Windows\SysWOW64\InputControl.dll, (Signed) &
[Java(tm) Plug-In SSV Helper]
&&{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} &e:\java7\bin\ssv.dll, (Signed) Oracle Corporation&
[CertEnroll Class]
&&{7978461C-CC22-48F2-BC69-D} &C:\Windows\SysWow64\aliedit\3.6.0.0\itrusenroll.dll, (Signed) iTruschina Co., Ltd.&
[yy_checker]
&&{C60-47F8-BA06-90BA7261C3AE} &C:\Program Files (x86)\Common Files\duowan\yy\YYSSO\1.0.0.3\npChecker.dll, (Signed) 广州多玩信息技术有限公司&
[AxAssistComm Class]
&&{F9-4C88-8A45-D6B} &E:\Program Files\ICBCEbankTools\ICBCSetupIntegration\IcbcAssistComm.dll, (Signed) Industrial and Commercial Bank of China&
[360SafeLive]
&&{C--D416CB8059E3} &E:\Program Files (x86)\360\360Safe\Safelive.dll, (Signed) &
[Microsoft Web Browser]
&&{A-11D0-A96B-00C04FD705A2} &C:\Windows\SysWOW64\ieframe.dll, (Signed) Microsoft Corporation&
[迅雷下载支持]
&&{889D2FEB-98-1DD2C5261283} &E:\迅雷七\BHO\XunleiBHO7.2.8.3574.dll, (Signed) 深圳市迅雷网络技术有限公司&
[XML HTTP 4.0]
&&{88D969C5-F192-11D4-A65F-E5} &C:\Windows\SysWOW64\msxml4.dll, (Signed) Microsoft Corporation&
[XML DOM Document 6.0]
&&{88D96A05-F192-11D4-A65F-E5} &%SystemRoot%\System32\msxml6.dll, (Signed) N/A&
[Dangle IEPlugin]
&&{8B0F1B27-E483-42AD-B228A} &D:\Program Files (x86)\当乐游戏中心\npdliepluginv1.2.dll, (Signed) 北京当乐信息技术有限公司&
[SetupCtrl Class]
&&{8CBE9-434E-B807-118E6E5EA3B6} &C:\Windows\Downloaded Program Files\1376084\BaiduSetupAx_0.dll, (Signed) Baidu Inc.&
[AxSubmitControl Class]
&&{8D9E0B29-563C--5FF2AE77E1D2} &C:\Windows\SysWOW64\SubmitControl.dll, (Signed) &
[SecCtrl Class]
&&{8EB7C6CB-2DA6-4ABE-B2EA-EAC5A372E757} &C:\Windows\SysWow64\aliedit\3.6.0.0\npAliSecCtrl.dll, (Signed)
Inc. &
[IEKeyControl Class]
&&{93E730CA-32AA-4C56-B5FB-CFE} &C:\Windows\SysWOW64\IE_FULL_SCREEN.dll, (Signed) Industrial and Commercial Bank of China&
[BFWebBrowserIECtrl Class]
&&{E60-48EE-BD33-54BA1241D28A} &e:\Program Files (x86)\Baofeng\StormPlayer\npBFWebBrowserPlugin.dll, (Signed) Beijing Baofeng Inc.&
[OFrameObject Class]
&&{73-482E-B13C-776C048EC890} &C:\Program Files (x86)\Common Files\Thunder Network\KanKan\DapCtrl.2.3.2).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.&
[迅雷资源关键字嗅探]
&&{9AA238FE--B188-05B6AEE76C3A} &F:\thunder\BHO\XlBrowserAddinKernel1.0.7.70.dll, (Signed) 深圳市迅雷网络技术有限公司&
[APlayer Control]
&&{A1-4B9D-91FC-B9C461DBE9DD} &C:\Program Files (x86)\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD&
[DapCtrl Class]
&&{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} &C:\Program Files (x86)\Common Files\Thunder Network\KanKan\DapCtrl.2.3.2).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.&
[SafeMon Class]
&&{B69F34DD-F0F9-42DC-9EDD-8D} &E:\Program Files (x86)\360\360Safe\safemon\safemon.dll, (Signed) &
[]
&&{BAEA-43BB-E1A8F42} &, &
[ICBC Anti-Phishing class]
&&{BBA-4C6B-91C0-BB} &D:\Program Files (x86)\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\Icbc_AntiPhishing.dll, (Signed) 中国工商银行&
[FTNUpload Class]
&&{BDEACC50-F56D-4D60-860F-CF6ED1766D65} &C:\Program Files (x86)\Common Files\Tencent\TXFTN\TXFTNActiveX1.17.dll, (Signed) Tencent&
[AUDIO__MP3 Moniker Class]
&&{CD3AFA76-B84F-48F0-9393-7EDC} &%SystemRoot%\system32\wmp.dll, (Signed) N/A&
[Shockwave Flash Object]
&&{D27CDB6E-AE6D-11CF-96B8-} &C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_9_900_170.ocx, (Signed) Adobe Systems, Inc.&
[]
&&{DD8E-4B35-AB22-9B} &, &
[Java(tm) Plug-In 2 SSV Helper]
&&{DBC85B-BC74-9C25C1C588A9} &e:\java7\bin\jp2ssv.dll, (Signed) Oracle Corporation&
[xoliimpl Class]
&&{DD5BF6D1--9DFA-5C343CAF178E} &C:\Windows\xinstaller.dll, (Signed) 深圳市迅雷技术有限公司&
[PlayerCtrl Class]
&&{E05BC2A3-9A46-4a32-80C9-023A473F5B23} &C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\QzoneMusic.dll, (Signed) Tencent&
[BDBProtocolHelperImpl Class]
&&{ECD0-435C-AE0D-FA1} &e:\Program Files (x86)\Baidu\BaiduPlayer\3.2.1.107\bdbph.dll, (Signed) &
[TimwpDll.TimwpCheck]
&&{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} &E:\PROGRA~2\Tencent\QQ\bin\Timwp.dll, (Signed) Tencent&
[XML HTTP Request]
&&{ED8C108E--91A4-00C04F7969E8} &%SystemRoot%\System32\msxml3.dll, (Signed) N/A&
[PPLive Lite Class]
&&{EF0D1A14--A589-240C01EDC078} &C:\Program Files (x86)\Internet Explorer\PPLite\plugin\1.0.1.4562\pplugin2.dll, (Signed) &
[]
&&{F3E70CEA-956E-49CC-B444-73AFE593AD7F} &, &
[Storm AxPlayer Class]
&&{F06-494D-87E2-} &e:\Program Files (x86)\Baofeng\StormPlayer\webplayer\PlayerShell.dll, (Signed) 北京暴风科技股份有限公司&
[XML DOM Document]
&&{F6D90F11-9C73-11D3-B32E-00C04F990BB4} &%SystemRoot%\System32\msxml3.dll, (Signed) N/A&
[XML HTTP]
&&{F6D90F16-9C73-11D3-B32E-00C04F990BB4} &%SystemRoot%\System32\msxml3.dll, (Signed) N/A&
[PPStream Video Acc Helper]
&&{FB4F-49F2-950F-A5998F9CEC6C} &e:\PPS.tv\PPStream\plugins\IEHelper.dll, (Signed) PPStream Inc.&
[webmod Class]
&&{FEE3C8C5-9BEA-4079-AB36-63ECABFC7392} &C:\Windows\SysWow64\aliedit\3.6.0.0\alidcp.dll, (Signed)
Co.,Ltd&
[&使用&迅雷下载]
&&&E:\迅雷七\BHO\geturl.htm, N/A&
[&使用&迅雷下载全部链接]
&&&E:\迅雷七\BHO\GetAllUrl.htm, N/A&
[&使用&迅雷离线下载]
&&&E:\迅雷七\BHO\OfflineDownload.htm, N/A&
[使用P2pSearch下载]
&&&F:\神器末日审判\IE2EM.htm, N/A&
[使用云帆小说阅读器下载]
&&&C:\Windows\system32\getflbookurl.htm, N/A&
[使用云帆小说阅读器下载此链接]
&&&E:\Program Files (x86)\云帆小说阅读器\getflbookurl2.htm, N/A&
[使用旋风下载]
&&&, &
[使用旋风下载(&X)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xfgeturl.htm, N/A&
[使用旋风下载全部链接(&Q)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xfgetAllurl.htm, N/A&
[使用旋风极速下载(会员特权)(&J)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xftopspeed.htm, N/A&
[使用迅雷下载]
&&&, &
[使用迅雷下载全部链接]
&&&, &
[使用迅雷看看播放器播放]
&&&C:\Users\Public\Thunder Network\XMP4\Core\Program\XmpIEMenu.htm, N/A&
[使用迅雷精简版下载]
&&&e:\Program Files (x86)\Thunder Network\MiniThunder\BHO\minixlgeturl.htm, N/A&
[使用迅雷精简版下载全部链接]
&&&e:\Program Files (x86)\Thunder Network\MiniThunder\BHO\minixlgetAllurl.htm, N/A&
[保存到旋风空间(会员特权)(&K)]
&&&E:\Program Files (x86)\Tencent\QQDownload\xfofflineonly.htm, N/A&
[导出到 Microsoft Office Excel(&X)]
&&&res://E:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000, N/A&
==================================
正在运行的进程
[PID: 1220 / SYSTEM][C:\Windows\SysWOW64\svchost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [c:\program files (x86)\kbox\kbox.dll]&&[Tianjing Tianji Advertising Media Co.,Ltd., 0, 0, 0, 5]
[PID: 1248 / SYSTEM][C:\Windows\SysWOW64\svchost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [c:\program files (x86)\netapps\nasvc.dll]&&[Legendsoft China (Beijing) Technology Limited, 0, 0, 0, 13]
[PID: 1292 / SYSTEM][C:\Program Files (x86)\STools\MSrv.exe]&&[Beijing Skycenter Technology Limited, 0, 0, 0, 2]
& & [C:\Program Files (x86)\STools\MSrv.dll]&&[Beijing Skycenter Technology Limited, 0, 0, 0, 51]
[PID: 1312 / SYSTEM][E:\Program Files (x86)\360\360Safe\deepscan\zhudongfangyu.exe]&&[, 3, 2, 2, 2021]
& & [E:\Program Files (x86)\360\360Safe\360base.dll]&&[, 1, 0, 0, 1018]
& & [E:\Program Files (x86)\360\360Safe\360util.dll]&&[, 1, 0, 0, 1063]
& & [E:\Program Files (x86)\360\360Safe\360conf.dll]&&[, 1, 0, 0, 1009]
& & [E:\Program Files (x86)\360\360Safe\deepscan\cloudcom2.dll]&&[, 3, 3, 9, 3128]
& & [E:\Program Files (x86)\360\360Safe\360leakfixplugin.dll]&&[, 1, 0, 0, 1006]
& & [E:\Program Files (x86)\360\360Safe\SoftMgr\360SoftMgrS.dll]&&[, 2, 1, 6, 1375]
& & [E:\Program Files (x86)\360\360Safe\360NetBase.dll]&&[, 7, 25, 0, 10]
& & [E:\Program Files (x86)\360\360Safe\deepscan\heavygate.dll]&&[, 3, 7, 9, 5]
& & [E:\Program Files (x86)\360\360Safe\deepscan\qutmload.dll]&&[, 7, 2, 1, 1035]
& & [E:\Program Files (x86)\360\360Safe\deepscan\bapi.dll]&&[, 2.0.0.1048]
[PID: 1692 / SYSTEM][C:\Program Files (x86)\alipay\alieditplus\AlipaySecSvc.exe]&&[Alipay Inc. , 1, 0, 37, 0]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
[PID: 1752 / SYSTEM][d:\Program Files (x86)\MyDrivers\DriverGenius2013\DgService.exe]&&[, 8.0.114.1003]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\PatchCore.dll]&&[, 8.0.114.1003]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\PnpSup.dll]&&[, 8.0.114.1003]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\cysvc.dll]&&[Kingsoft Corporation, ,7385]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dgroutemsg.dll]&&[, 7.0.522.1050]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dgdectrl.dll]&&[, ,47]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\kxebase.dll]&&[Kingsoft Corporation, ,1978]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\ksapi.dll]&&[Kingsoft Corporation, ,107]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\kdump.dll]&&[Kingsoft Corporation, ,3620]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dgmctrl.dll]&&[, ,62]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dghmpg.dll]&&[, ,2100]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\ksoft\kinfoc.dll]&&[Kingsoft Corporation, ,2906]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\dgserhost.dll]&&[Kingsoft Corporation, ,202]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\kbinst.dll]&&[N/A, ]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dgdecs.dll]&&[, ,7]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\kxescan\kfcdetect.dll]&&[Kingsoft Corporation, ,3350]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\kxescan\sqlite.dll]&&[Kingsoft Corporation, ,781]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dglog.dll]&&[, ,2700]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\kxescan\ksbwdet2hipt.dll]&&[Kingsoft Corporation, ,3575]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\security\ksde\dgleng.dll]&&[, ,2700]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [d:\Program Files (x86)\MyDrivers\DriverGenius2013\MydriversC.dll]&&[N/A, ]
[PID: 1164 / SYSTEM][C:\Windows\SysWOW64\PnkBstrA.exe]&&[N/A, ]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
[PID: 1780 / SYSTEM][C:\Windows\SysWOW64\svchost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\xlsp.dll]&&[深圳市迅雷网络技术有限公司, 1.0.1.308]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\MSVCP71.dll]&&[Microsoft Corporation, 7.10.6030.0]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\MSVCR71.dll]&&[Microsoft Corporation, 7.10.6030.0]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\XLBugHandler.dll]&&[, 2, 2, 0, 7]
& & [c:\program files (x86)\common files\thunder network\serviceplatform\XLDocSer.dll]&&[深圳市迅雷网络技术有限公司, 1.0.1.318]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [C:\Users\Public\Thunder Network\KanKan\Pusher\xappdrv.1.0.0.15.dll]&&[, 1, 0, 0, 15]
[PID: 2244 / Administrator][D:\Program Files (x86)\当乐游戏中心\DjClientSupport.exe]&&[当乐科技有限公司, 1.0.0.1]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 1636 / Administrator][C:\Windows\System32\TiltWheelMouse.exe]&&[Pixart Imaging Inc, 1.0.0.2]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 2292 / Administrator][E:\Program Files (x86)\Cobra mouse driver\Cobra\Monitor.EXE]&&[Cobra, 1, 0, 0, 0]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files (x86)\Cobra mouse driver\Cobra\lan.dll]&&[, 1, 0, 0, 1]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 3088 / Administrator][C:\Program Files (x86)\STools\STools.exe]&&[Beijing Skycenter Technology Limited, 0, 0, 0, 46]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 3384 / Administrator][C:\Program Files (x86)\alipay\SafeTransaction\Alipaybsm.exe]&&[Alipay Inc. , 1, 0, 0, 36]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [C:\Windows\SysWow64\aliedit\3.6.0.0\alidcp.dll]&&[ Co.,Ltd, 2.0.0.6]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 4788 / Administrator][C:\Program Files (x86)\alipay\SafeTransaction\AlipaySafeTran.exe]&&[Alipay Inc. , 1, 1, 0, 1]
& & [C:\Program Files (x86)\alipay\SafeTransaction\AliPayST.dll]&&[阿里巴巴云计算有限公司, 1, 1, 0, 3]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [C:\Windows\SysWow64\aliedit\3.6.0.0\alidcp.dll]&&[ Co.,Ltd, 2.0.0.6]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 6836 / Administrator][E:\Games\World_of_Tanks\WorldOfTanks.exe]&&[Wargaming.net, 0, 8, 10, 0]
& & [E:\Games\World_of_Tanks\voip.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\vivoxsdk.dll]&&[Vivox Inc., 4, 5, ]
& & [E:\Games\World_of_Tanks\ortp.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\libsndfile-1.dll]&&[Vivox, 4, 5, ]
& & [E:\Games\World_of_Tanks\vivoxoal.dll]&&[Vivox, 4, 5, ]
& & [E:\Games\World_of_Tanks\vivoxplatform.dll]&&[Vivox, 4, 5, ]
& & [E:\Games\World_of_Tanks\libcurl.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\zlib1.dll]&&[Zlib, 1.2.3.2027]
& & [E:\Games\World_of_Tanks\umbraob32.dll]&&[Umbra Software Ltd., 0, 0, 0]
& & [E:\Games\World_of_Tanks\LIBEAY32.dll]&&[The OpenSSL Project, [url]http://www.openssl.org/[/url], 0.9.8l]
& & [E:\Games\World_of_Tanks\fmodex.dll]&&[Firelight Technologies, 4.42.03]
& & [E:\Games\World_of_Tanks\fmod_event_net.dll]&&[Firelight Technologies, 4.42.03]
& & [C:\Windows\system32\nvd3dum.dll]&&[NVIDIA Corporation, 9.18.13.1422]
& & [C:\Windows\system32\nvapi.dll]&&[NVIDIA Corporation, 9.18.13.1422]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
& & [E:\Games\World_of_Tanks\7z.dll]&&[Igor Pavlov, 9.17 beta]
& & [E:\Games\World_of_Tanks\DeltaMAX.dll]&&[Indigo Rose Corporation, 2.0.1.0]
& & [E:\Games\World_of_Tanks\NxCooking.dll]&&[, 2, 7, 0, 3]
& & [E:\Games\World_of_Tanks\PhysXLoader.dll]&&[, 2, 7, 0, 3]
& & [E:\Games\World_of_Tanks\ssleay32.dll]&&[The OpenSSL Project, [url]http://www.openssl.org/[/url], 0.9.8l]
& & [E:\Games\World_of_Tanks\umbra.dll]&&[Umbra Software Ltd., 1, 5, 4, 0]
& & [E:\Games\World_of_Tanks\uwApi.dll]&&[Gametrix, 0, 0, 23, 0]
& & [E:\Games\World_of_Tanks\WOTBoxModule.dll]&&[, 1, 0, 0, 1]
& & [E:\Games\World_of_Tanks\res\awesomium\awesomium.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\icudt.dll]&&[The ICU Project, 4, 6, 0, 0]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
& & [E:\Program Files (x86)\360\360Safe\safemon\safemon.dll]&&[, 8, 3, 1, 1110]
[PID: 7196 / Administrator][C:\Windows\SysWOW64\ctfmon.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 8492 / Administrator][C:\Windows\SysWOW64\DllHost.exe]&&[(Verified) Microsoft Corporation, 6.1. (win7_rtm.5)]
& & [E:\Program Files\360\360AI\hook.dll]&&[, 1, 0, 0, 1001]
[PID: 752 / Administrator][E:\Games\World_of_Tanks\res\awesomium\awesomium_process.exe]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\awesomium.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\icudt.dll]&&[The ICU Project, 4, 6, 0, 0]
& & [E:\Games\World_of_Tanks\res\awesomium\avcodec-53.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\avutil-51.dll]&&[N/A, ]
& & [E:\Games\World_of_Tanks\res\awesomium\avformat-53.dll]&&[N/A, ]
[PID: 3056 / Administrator][F:\原E盘东西\sreng扫描2\SREngLdr.EXE]&&[Smallfrogs Studio, 2.8.2.1321]
[PID: 7068 / Administrator][F:\原E盘东西\sreng扫描2\SREd71e171d.EXE]&&[Smallfrogs Studio, 2.8.2.1321]
& & [C:\Windows\system32\QQWUBI.IME]&&[Tencent, 2.0.313.400]
& & [F:\原E盘东西\sreng扫描2\Upload\3rdUpd.DLL]&&[Smallfrogs Studio, 2, 1, 0, 15]
& & [C:\Windows\system32\gamelsp.dll]&&[Copyright (C) GameCap, 6.0.4.68]
==================================
文件关联
.TXT&&OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE&&OK. [&%1& %*]
.COM&&OK. [&%1& %*]
.PIF&&OK. [&%1& %*]
.REG&&OK. [regedit.exe &%1&]
.BAT&&OK. [&%1& %*]
.SCR&&OK. [&%1& /S]
.CHM&&OK. [&%SystemRoot%\hh.exe& %1]
.HLP&&Error. []
.INI&&OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF&&OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS&&Error. [%SystemRoot%\System32\WScript.exe &%1& %*]
.JS& &OK. [%SystemRoot%\System32\WScript.exe &%1& %*]
.LNK&&OK. [{0-}]
==================================
Winsock 提供者
GameLSP on MSAFD Tcpip [TCP/IP]
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
GameLSP on MSAFD Tcpip [UDP/IP]
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
GameLSP on MSAFD Tcpip [RAW/IP]
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
GameLSP IPLayer
& & C:\Windows\system32\gamelsp.dll(Copyright (C) GameCap, GameLSP Sockets 2.0 Service Provider)
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
N/A
==================================
进程特权扫描
N/A
==================================
计划任务
N/A
==================================
Windows 安全更新检查
N/A
==================================
API HOOK
入口点错误:FindFirstFileA (危险等级: 高,&&被下面模块所HOOK: 0xB9F7DD86)
==================================
隐藏进程
N/A
==================================
System Repair Engineer 2.8.2.1321
Smallfrogs ([url][/url])
Windows 7 Ultimate Edition Service Pack 1 (Build 7601) - 管理权限用户 - 完整功能
以下内容被选中:
& & Autorun.inf
& & HOSTS 文件
& & 进程特权扫描
& & 计划任务
& & API HOOK
& & 隐藏进程
启动项目
注册表
N/A
==================================
启动文件夹
N/A
==================================
服务
N/A
==================================
驱动程序
N/A
==================================
浏览器加载项
N/A
==================================
正在运行的进程
N/A
==================================
文件关联
N/A
==================================
Winsock 提供者
N/A
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
127.0.0.1
127.0.0.1 Fvid.
127.0.0.1 html.
127.0.0.1 valb.
127.0.0.1 valf.
127.0.0.1 valo.
127.0.0.1 valp.
127.0.0.1
127.0.0.1 speed.
127.0.0.1 urchin.
127.0.0.1
127.0.0.1 static.
127.0.0.1 valc.
127.0.0.1 vid.
127.0.0.1 walp.
120.92.249.145 [url][/url]
120.92.249.145
122.226.122.23
122.226.122.21
112.64.235.19
122.226.122.6
122.226.122.21
122.226.122.21
120.92.249.145
182.118.64.110 zz.net
122.226.122.21 att.3dmgame.net
==================================
进程特权扫描
N/A
==================================
计划任务
[已禁用] \\Adobe Flash Player Updater
& && &&&C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[已启用] \\DJServer
& && &&&D:\Program Files (x86)\当乐游戏中心\DjClientSupport.exe
[已禁用] \\PPSProtect
& && &&&E:\PPS.tv\PPStream\PPSProtect.exe auto
[已启用] \\RsDelayLauncher_{8A3-59E0B0A380}
& && &&&C:\Program Files (x86)\Rising\RMC\rsdelaylauncher.exe auto
[已启用] \\{2A608DBE-32D7-D-25AE}
& && &&&C:\Windows\system32\pcalua.exe -a E:\《[在论坛广告被屏蔽]》\uninstall.exe -d E:\《[在论坛广告被屏蔽]》\
[已启用] \\{891B8F03-C7F7-4DC5-8C6C-4D}
& && &&&C:\Windows\system32\pcalua.exe -a E:\软件\W7\QQWubi_Setup_2.0.313.400.exe -d E:\软件\W7
[已启用] \\{8BC-47F3-A0FC-ABB26CA48F4D}
& && &&&C:\Windows\system32\pcalua.exe -a C:\Users\ioewlk\AppData\Local\Temp\Temp1_网络驱动华硕官网.zip\Lan\LAN\Win7\setup.exe
[已启用] \\{CA1048A3-CF4C-4AC7-BF63-92FD4DD68253}
& && &&&C:\Windows\system32\pcalua.exe -a E:\downloadsetup.exe -d E:\
[已启用] \\{CE7BB023-D7AD-4029-A6CD-E04D1F0BBE87}
& && &&&C:\Windows\system32\pcalua.exe -a E:\PROGRA~2\CHINAG~1\iGame\INSTAL~1.EXE -d E:\PROGRA~2\CHINAG~1\iGame -c 1
[已启用] \Funshion\FSPlatform
& && &&&C:\Users\Administrator\funshion\funshiontools\FSPAP.exe -systray
[已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
& && &&&N/A
[已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
& && &&&N/A
[已禁用] \Microsoft\Windows\AppID\PolicyConverter
& && &&&%windir%\system32\appidpolicyconverter.exe
[已禁用] \Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck
& && &&&%windir%\system32\appidcertstorecheck.exe
[已启用] \Microsoft\Windows\Application Experience\AitAgent
& && &&&aitagent
[已启用] \Microsoft\Windows\Application Experience\ProgramDataUpdater
& && &&&%windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
[已启用] \Microsoft\Windows\Autochk\Proxy
& && &&&%windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
[已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
& && &&&BthUdTask.exe $(Arg0)
[已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask
& && &&&N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask
& && &&&N/A
[已禁用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
& && &&&N/A
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
& && &&&%SystemRoot%\System32\wsqmcons.exe
[已启用] \Microsoft\Windows\Defrag\ScheduledDefrag
& && &&&%windir%\system32\defrag.exe -c
[已启用] \Microsoft\Windows\Location\Notifications
& && &&&%windir%\System32\LocationNotifications.exe
[已启用] \Microsoft\Windows\Maintenance\WinSAT
& && &&&N/A
[已禁用] \Microsoft\Windows\Media Center\ActivateWindowsSearch
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
[已禁用] \Microsoft\Windows\Media Center\ConfigureInternetTimeService
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
[已禁用] \Microsoft\Windows\Media Center\DispatchRecoveryTasks
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ehDRMInit
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DRMInit
[已禁用] \Microsoft\Windows\Media Center\InstallPlayReady
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\mcupdate
& && &&&%SystemRoot%\ehome\mcupdate $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\OCURActivate
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
[已禁用] \Microsoft\Windows\Media Center\OCURDiscovery
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\PBDADiscovery
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW1
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW2
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PeriodicScanRetry
& && &&&%windir%\ehome\MCUpdate.exe -pscn 0
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\RecordingRestart
& && &&&%SystemRoot%\ehome\ehrec /RestartRecording
[已禁用] \Microsoft\Windows\Media Center\RegisterSearch
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ReindexSearchRoot
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
& && &&&%SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\UpdateRecordPath
& && &&&%SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
[已启用] \Microsoft\Windows\MobilePC\HotStart
& && &&&N/A
[已启用] \Microsoft\Windows\MUI\LPRemove
& && &&&%windir%\system32\lpremove.exe
[已启用] \Microsoft\Windows\Multimedia\SystemSoundsService
& && &&&N/A
[已启用] \Microsoft\Windows\NetTrace\GatherNetworkInfo
& && &&&%windir%\system32\gatherNetworkInfo.vbs
[已禁用] \Microsoft\Windows\Offline Files\Background Synchronization
& && &&&N/A
[已禁用] \Microsoft\Windows\Offline Files\Logon Synchronization
& && &&&N/A
[已启用] \Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
& && &&&%SystemRoot%\System32\powercfg.exe -energy -auto
[已启用] \Microsoft\Windows\Ras\MobilityManager
& && &&&N/A
[已禁用] \Microsoft\Windows\SideShow\AutoWake
& && &&&N/A
[已启用] \Microsoft\Windows\SideShow\GadgetManager
& && &&&N/A
[已禁用] \Microsoft\Windows\SideShow\SessionAgent
& && &&&N/A
[已禁用] \Microsoft\Windows\SideShow\SystemDataProviders
& && &&&N/A
[已禁用] \Microsoft\Windows\SystemRestore\SR
& && &&&%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1
& && &&&%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2
& && &&&%windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[已启用] \Microsoft\Windows\Time Synchronization\SynchronizeTime
& && &&&%windir%\system32\sc.exe start w32time task_started
[已启用] \Microsoft\Windows\UPnP\UPnPHostConfig
& && &&&sc.exe config upnphost start= auto
[已禁用] \Microsoft\Windows\User Profile Service\HiveUploadTask
& && &&&N/A
[已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting
& && &&&%windir%\system32\wermgr.exe -queuereporting
[已启用] \Microsoft\Windows\Windows Media Sharing\UpdateLibrary
& && &&&&%ProgramFiles%\Windows Media Player\wmpnscfg.exe&
[已启用] \Microsoft\Windows\WindowsBackup\ConfigNotification
& && &&&%systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
[已禁用] \Microsoft\Windows\WindowsColorSystem\Calibration Loader
& && &&&N/A
[已启用] \Microsoft\Windows\Wininet\CacheTask
& && &&&N/A
==================================
Windows 安全更新检查
N/A
==================================
API HOOK
入口点错误:FindFirstFileA (危险等级: 高,&&被下面模块所HOOK: 0xB9F7DD86)
==================================
隐藏进程
N/A
==================================
不形于色 发表于
大神,帮我看一下日志
当乐游戏中心是什么?
c:\program files (x86)\woxiuclient\woxiuclient.exe& -startm
这个呢??
360急救箱强力模式有无尝试?
不形于色 发表于
大神,帮我看一下日志
貌似没什么异常,你是不是经常浏览什么网站然后那个网站偷偷把瑞星安装包放到你电脑上了?
卸载不干净的问题,瑞星要用系统自带的卸载删除工具来删除
卸载瑞星软件部署系统即可
hez2010 发表于
貌似没什么异常,你是不是经常浏览什么网站然后那个网站偷偷把瑞星安装包放到你电脑上了?
经常上youtube,用的hao123,这个我不敢轻易动,因为要Fan{过}{滤}Qiang,估计就是上这个网站绑了RS,不知道怎么单独找出来
Copyright & KaFan & All Rights Reserved.
Powered by Discuz! X3.1( 苏ICP备号 ) GMT+8,}
我要回帖
更多关于 宋小宝得了什么病 的文章
更多推荐
- ·徐州劳务公司排名前十名运贤人力资源有限公司是不是骗子公司?
- ·手指上长了个头上都长些什么?
- ·犬瘟热用什么药效果最好怎么治疗?
- ·怎么感觉身上总是疲惫不堪,突然头晕心里难受是怎么回事难受?
- ·化毛片和男性复合维生素片的作用及功能有啥区别吗?
- ·老电影 俗家弟子闯关于少林寺的老电影十八铜人阵然后用双手臂举起滚烫的鼎
- ·谁有Esso ist es immerVorbei的无损啊
- ·射手座喜欢一个人男感觉另一伴喜欢别人了会怎么做
- ·王隽逸 快乐女声声中有个叫王什么然的那个字读什么
- ·清道夫怎么吃悬在半空中是怎么回事
- ·刘诗诗电影全集在哪部电影中叫梁爱诗
- ·申请云南少数民族有哪些特色村落需要具备哪些条件
- ·真真切切也许有天你会发现欧美女歌手手
- ·什么电视剧俩姐妹嫁入豪门小妻很不乖兄弟
- ·陈子豪解说的背景音乐一把大炮也可以这么猛最后背景音乐是什么?
- ·18天的养小松鼠鼠要怎么养才好?
- ·国二次元动漫女神排行榜榜投票结果
- ·求乐视会员就看一下左耳电影乐视
- ·我的世界boardwalkk上面填什么
- ·家用天燃热水器什么牌子好器挂壁锅炉几天就加水是什么原因
- ·iphone7什么时候上市是“funshionwed”
- ·求同济大学建筑学课程表的课程表
- ·解方程根号2x的平方急急急 6X+2X=8/7 3X-1=4/9 X/2+4=3X/2+1
- ·谁有这南通考前6套卷数学的数学,急!
- ·七年级下册英语翻译水平文章全文翻译,
- ·孩子六年级了,各科成绩都一直不错,就是不会三年级奥数举一反三三,担心孩子的思维被约束了,怎么办?
- ·去澳洲旅游签证办签证时公正书能用头年的吗
- ·造成国家分与合社会进步的决定性因素素是什么
- ·四川大学自考本科2011级本科生物专业普通生物学等教材是哪个版本?
- ·12种最濒危的动物动物帮我猜下
- ·潮莲常熟怡景湾湾为什么没人管
- ·(8a4 a b 的平方 8a 8b十a分之2-8a
- ·神奇的锦州航海仪器厂,神奇的文艺
- ·八重装机兵 岔路镇镇艾寨丕界学校四年级二班 邢文雁语文 排名榜
- ·let,let s play dance舞蹈__the swing
- ·等粗细一根长2米的圆木木如何区分上下端
