DOC

SysLog

By Joanne Moore,2014-02-18 14:45
11 views 0
SysLog ...

[CODE]

    2010-09-29,11:53:38

    SysLog Scanner 3.1 - build 20100608

    Arswp (http://www.arswp.com)

    Windows XP Professional Service Pack 3 (build 2600) ================================================================

    注册项

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [AMD, 1, 1, 4, 0]

    [(Verified)Kingsoft Corporation, 2010,08,31,16]

    [(Verified)Kingsoft Corporation., 1.5.0.1145]

    [(Verified)Realtek Semiconductor Corp., 2.3.6.9]

    [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)NVIDIA Corporation, 6.14.11.7833]

    [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)NVIDIA Corporation, 6.14.11.7833]

    [(Verified)Copyright (C) 2008, 1, 9, 0, 0]

    [N/A]

    [HKEY_CURRENT_USER\Control Panel\Desktop]

    [N/A]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs]

    [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components]

    [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105) | N/A] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105) | (Verified)N/A]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt] [N/A]

    [N/A]

    [N/A]

    [N/A]

    ================================================================

    启动组

    ================================================================

    任务计划

    [SogouImeMgr.job]

    [(Verified)Sogou.com Inc., 5.0.1.4193]

    ================================================================

    组件

    --------------------------------

    Shell Extension

    [Display Panning CPL Extension]

    []

    [任务栏和「开始」菜单]

    []

[HaoZip Shell Extension]

    [好压软件工作室, 1.8.1.3942]

    [NvCpl DesktopContext Class] [(Verified)NVIDIA Corporation, 6.14.11.7833]

    [Desktop Explorer]

    [N/A]

    -------------------------------- Context Menu

    [duba_32bit]

    [(Verified)Kingsoft Corporation, 2010,05,29,742]

    [HaoZip]

    [好压软件工作室, 1.8.1.3942]

    [00nView]

    [N/A]

    [NvCplDesktopContext]

    [(Verified)NVIDIA Corporation, 6.14.11.7833]

    -------------------------------- BrowserHelperObject

    [ThunderAtOnce Class]

    [(Verified)深圳市迅雷网络技术有限公司, 5,9,16,1306] [DetectAddin Class]

    [(Verified)Xunlei, 1, 0, 0, 9] [Thunder Browser Helper]

[(Verified)深圳市迅雷网络技术有限公司, 5,9,16,1306]

    --------------------------------

    ActiveX Extension

    [ThunderAtOnce Class]

    [(Verified)深圳市迅雷网络技术有限公司, 5,9,16,1306]

    [DetectAddin Class]

    [(Verified)Xunlei, 1, 0, 0, 9]

    [Thunder Browser Helper]

    [(Verified)深圳市迅雷网络技术有限公司, 5,9,16,1306]

    [Shockwave Flash Object]

    [(Verified)Adobe Systems, Inc., 10,1,85,3]

    [SEInterface Class]

    [(Verified)Sohu.com Inc., 1, 0, 2, 1]

    ================================================================

    服务

    [HID Input Service / HidServ][Stopped/Auto Start]

    <%SystemRoot%\System32\svchost.exe -k netsvcs -->

    "%SystemRoot%\System32\hidserv.dll"> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p></p><p>[Kingsoft Antivirus WebShield Service / Kingsoft Antivirus WebShield Service][Running/Auto Start]</p><p> <C:\Program Files\Kingsoft\Kingsoft WebShield\KSWebShield.exe> [(Verified)Kingsoft Corporation, 2010,07,02,8]</p><p>[KSafe service / KSafeSvc][Running/Manual Start]</p><p> <"C:\Program Files\Kingsoft\KSafe\KSafeSvc.exe" -svc> [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p>[Kingsoft Core Defend Service / kxedefend][Running/Auto Start]</p><p> <"C:\Program Files\Common Files\Kingsoft\kiscommon\kxedefend.exe" /service kxedefend> [(Verified)Kingsoft Corporation, 2010,08,05,1009]</p><p>[Kingsoft Security App Service / kxesapp][Running/Auto Start]</p><p> <"C:\Program Files\Common Files\Kingsoft\kiscommon\kxesapp.exe" /service kxesapp> [(Verified)Kingsoft

    Corporation, 2010,08,05,1009]</p><p>[Kingsoft Core Service / kxescore][Running/Auto Start]</p><p> <"C:\Program Files\Common Files\Kingsoft\kiscommon\kxescore.exe" /service kxescore> [(Verified)Kingsoft Corporation, 2010,08,05,1009]</p><p>[Kingsoft Antivirus Update Service / KxEUpSrv][Running/Auto Start]</p><p> <"C:\Program Files\Common Files\Kingsoft\kiscommon\upsvc.exe"> [(Verified)Kingsoft Corporation, 2010,06,09,773]</p><p>[NVIDIA Display Driver Service / nvsvc][Running/Auto Start]</p><p> <%SystemRoot%\system32\nvsvc32.exe> [(Verified)NVIDIA Corporation, 6.14.11.7833]</p><p>[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]</p><p> <"%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini"> [(Verified)CACE Technologies, Inc., 4.1.0.1753]</p><p></p><p>================================================================</p><p>驱动</p><p></p><p>[hptpro /

    hptpro][Stopped/Boot Start]</p><p> <system32\DRIVERS\hptpro.sys> [HighPoint Technologies, Inc., 1.23.12.10]</p><p>[Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Stopped/Manual Start]</p><p>

    <system32\DRIVERS\Rtenicxp.sys> [Realtek Semiconductor Corporation , 5.708.1030.2008 built by: WinDDK]</p><p>[TCP/IP Protocol Driver / Tcpip][Running/System Start]</p><p> <system32\DRIVERS\tcpip.sys> [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_qfe.080620-1309)]</p><p></p><p>[amdide / amdide][Running/Boot Start]</p><p> <system32\DRIVERS\amdide.sys> [(Verified)Advanced Micro Devices, 5.1.0.8 built by: WinDDK]</p><p>[AMD Processor Driver / AmdK8][Running/System Start]</p><p>

    <System32\drivers\amdk8.sys> [(Verified)Advanced Micro Devices, 1.3.2 (dnsrv(wmbla).060701-2226)]</p><p>[AMD Low Level Device Driver / AmdLLD][Running/Manual Start]</p><p> <system32\DRIVERS\AmdLLD.sys> [(Verified)AMD, Inc., 1.0.1.0]</p><p>[AtpKrnl / AtpKrnl][Stopped/Manual Start]</p><p> <System32\Drivers\AtpKrnl.sys> [(Verified)www.arswp.com, 3.00]</p><p>[Compaq Easy Access PS2 Internet Keyboard (Win2K) / eaps2kbd][Running/Manual Start]</p><p> <system32\DRIVERS\eaps2kbd.sys> [(Verified)Compaq Computer Corp., 6.00.650]</p><p>[EAWDMFD /

    eawdmfd][Running/System Start]</p><p> <system32\DRIVERS\eawdmfd.sys> [(Verified)Compaq Computer Corporation, 3.00.000.b7]</p><p>[Microsoft 用于 High

    Definition Audio UAA 总线驱动程序 / HDAudBus][Running/Manual Start]</p><p>

    <system32\DRIVERS\HDAudBus.sys> [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK]</p><p>[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]</p><p>

    <system32\drivers\RtkHDAud.sys> [(Verified)Realtek Semiconductor Corp., 5.10.0.6194 built by: WinDDK]</p><p>[KAVBootC / KAVBootC][Running/Boot Start]</p><p> <system32\drivers\KAVBootC.sys> [(Verified)Kingsoft Corporation, 2010,04,14,609]</p><p>[KAVSafe / KAVSafe][Running/Auto Start]</p><p> <\??\C:\WINDOWS\system32\Drivers\KAVSafe.sys> [(Verified)Kingsoft Corporation, 2010,05,21,727]</p><p>[ksdef / ksdef][Running/Auto Start]</p><p> <\??\C:\WINDOWS\system32\drivers\ksdef.sys> [(Verified)Kingsoft Corporation, 2010,08,21,48]</p><p>[kwatch32 / kwatch32][Running/Auto Start]</p><p> <\??\C:\WINDOWS\system32\drivers\kwatch32.sys> [(Verified)Kingsoft Corporation, 2010,07,22,40]</p><p>[NetGroup Packet Filter Driver / NPF][Running/Auto

    Start]</p><p> <system32\drivers\npf.sys> [(Verified)CACE Technologies, Inc., 4.1.0.1753]</p><p>[nv / nv][Running/Manual Start]</p><p>

    <system32\DRIVERS\nv4_mini.sys> [(Verified)NVIDIA Corporation,

    6.14.11.7833]</p><p>[Direct Parallel Link Driver / Ptilink][Running/Manual Start]</p><p> <system32\DRIVERS\ptilink.sys> [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148)]</p><p>[regmmap / regmmap][Running/System Start]</p><p> <\??\C:\Program Files\Lenovo\Svcreg\regmmap.sys>

    [(Verified)N/A]</p><p>[Secdrv / Secdrv][Stopped/Manual Start]</p><p> <system32\DRIVERS\secdrv.sys> [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086]</p><p>[NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start]</p><p> <system32\DRIVERS\yk51x86.sys> [(Verified)Marvell, 11.28.6.3 built by:

    WinDDK]</p><p></p><p>================================================================</p><p>活动进程</p><p></p><p></p><p>[PID: 712 /

    SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]</p><p> C:\WINDOWS\system32\sfc_os.dll [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p> C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 768 / SYSTEM]

    C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 932 / SYSTEM] C:\WINDOWS\system32\nvsvc32.exe [(Verified)NVIDIA Corporation, 6.14.11.7833]</p><p> C:\WINDOWS\system32\nvapi.dll [(Verified)NVIDIA Corporation, 6.14.11.7833]</p><p> C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p></p><p>[PID: 964 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 1032 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p>

    C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 1168 / SYSTEM]

    C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 1220 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p>

    C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 1336 / LOCAL SERVICE]

    C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft

    Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 1628 / Administrator] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Kingsoft\Kingsoft Antivirus\ktaskbar.dll [(Verified)Kingsoft Corporation, 2010,05,26,732]</p><p> C:\Program Files\Common

    Files\Kingsoft\kiscommon\DetectDllHijack.dll [(Verified)Kingsoft Corporation, 2010,08,30,159]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p> C:\Program Files\Kingsoft\KSafe\ksfmon.dll [(Verified)Kingsoft Corporation., 1.5.0.1145]</p><p> C:\WINDOWS\system32\browselc.dll [Microsoft Corporation, 6.00.2600.0000]</p><p> C:\Program Files\Thunder

    Network\Thunder\ComDlls\ATL71.DLL [Microsoft Corporation, 7.10.6101.0]</p><p> C:\Program Files\Thunder Network\Thunder\ComDlls\MSVCP71.dll [Microsoft Corporation, 7.10.6030.0]</p><p> C:\Program Files\Thunder

    Network\Thunder\ComDlls\MSVCR71.dll [Microsoft Corporation, 7.10.6030.0]</p><p> C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)深圳市迅雷网络技术有限公司, 5,9,16,1306]</p><p> C:\Program Files\Thunder

    Network\Thunder\userdata\Components\ResWorker\DsBho_00.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 26]</p><p> C:\Program Files\Thunder

    Network\Thunder\userdata\Components\ResWorker\DataProcessor_00.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 20]</p><p> C:\Program

    Files\HaoZip\HaoZipExt.dll [好压软件工作室, 1.8.1.3942]</p><p> C:\Program

    Files\Kingsoft\Kingsoft Antivirus\kavmenu.dll [(Verified)Kingsoft Corporation, 2010,05,29,742]</p><p> C:\Program Files\Kingsoft\Kingsoft Antivirus\kis.dll [(Verified)Kingsoft Corporation, 2010,08,25,1089]</p><p></p><p>[PID: 1704 / SYSTEM] C:\Program Files\Kingsoft\Kingsoft WebShield\KSWebShield.exe [(Verified)Kingsoft Corporation, 2010,07,02,8]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kdump.dll [(Verified)Kingsoft Corporation, 2010,08,24,1353]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwssp.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kxebase.dll [(Verified)Kingsoft Corporation, 2009,11,20,309]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\scom.dll [(Verified)Kingsoft Corporation, 2009,11,20,309]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kxecore\kxelog.dll [(Verified)Kingsoft Corporation, 2009,11,20,309]</p><p> C:\Program Files\Kingsoft\Kingsoft

    WebShield\kxecore\kxecore.dll [(Verified)Kingsoft Corporation,

    2009,11,20,309]</p><p> C:\Program Files\Kingsoft\Kingsoft

    WebShield\kxecore\kxestat.dll [(Verified)Kingsoft Corporation, 2010,5,12,402]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\report\kinfoc.dll [(Verified)Kingsoft Corporation, 2010,05,07,677]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\KSE\ksecorex.dll [(Verified)Kingsoft Corporation,

2010,08,25,1089]</p><p> C:\Program Files\Kingsoft\Kingsoft

    WebShield\KSE\kae\kaecore.dat [(Verified)Kingsoft Corporation,

    2010,08,31,108]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\KSE\wfs.dll [(Verified)Kingsoft Corporation, 2010,08,23,1070]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\KSE\sqlite.dll [(Verified)Kingsoft Corporation, 2010,07,05,1194]</p><p> C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\KSE\ksbwdet2.dll [(Verified)Kingsoft Corporation,

    2010,08,26,1359]</p><p></p><p>[PID: 1828 / SYSTEM]

    C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.6024 (xpsp_sp3_gdr.100817-1626)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\WINDOWS\system32\sfc_os.dll [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p></p><p>[PID: 648 / Administrator] C:\Program Files\Kingsoft\KSafe\KSafeTray.exe [(Verified)Kingsoft Corporation., 1.5.0.1145]</p><p> C:\Program Files\Kingsoft\KSafe\ksfmon.dll [(Verified)Kingsoft Corporation., 1.5.0.1145]</p><p> C:\Program Files\Kingsoft\KSafe\krunopt.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\kdump.dll [(Verified)Kingsoft Corporation, 2010,08,24,1353]</p><p> C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p> C:\Program Files\Common

    Files\Kingsoft\kiscommon\DetectDllHijack.dll [(Verified)Kingsoft Corporation, 2010,08,30,159]</p><p> C:\Program Files\Kingsoft\KSafe\kwsctrl.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\ksafevul.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\ksafeup.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\zlib1.dll [(Verified)(C) 1995-2004 Jean-loup Gailly & Mark Adler, 1.2.3]</p><p> C:\Program

    Files\Kingsoft\KSafe\kplugeng.dll [(Verified)Kingsoft Corporation., 1.5.2.1189]</p><p></p><p>[PID: 836 / Administrator] C:\WINDOWS\RTHDCPL.EXE [(Verified)Realtek Semiconductor Corp., 2.3.6.9]</p><p>

    C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Common

    Files\Kingsoft\kiscommon\DetectDllHijack.dll [(Verified)Kingsoft Corporation, 2010,08,30,159]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p></p><p>[PID: 956 / Administrator]

    C:\WINDOWS\system32\RUNDLL32.EXE [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\WINDOWS\system32\NvMcTray.dll [(Verified)NVIDIA Corporation, 6.14.11.7833]</p><p> C:\WINDOWS\system32\nvapi.dll [(Verified)NVIDIA

    Corporation, 6.14.11.7833]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p> C:\Program Files\Common

    Files\Kingsoft\kiscommon\DetectDllHijack.dll [(Verified)Kingsoft Corporation, 2010,08,30,159]</p><p> C:\WINDOWS\system32\NVRSZHC.DLL [NVIDIA

    Corporation, 6.14.12.5919]</p><p></p><p>[PID: 1128 / Administrator] C:\Program Files\Lenovo\Svcreg\svcreg.exe [(Verified)Copyright (C) 2008, 1, 9, 0, 0]</p><p> C:\Program Files\Lenovo\Svcreg\nspbase.dll [Lenovo, 2, 22, 0, 0]</p><p> C:\Program Files\Lenovo\Svcreg\netmon.dll [版权所有 (C) 2006, 1, 3, 0, 0]</p><p> C:\Program

    Files\Lenovo\Svcreg\midlib.dll [lenovo, 1, 7, 0, 0]</p><p>

    C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Common

    Files\Kingsoft\kiscommon\DetectDllHijack.dll [(Verified)Kingsoft Corporation, 2010,08,30,159]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p></p><p>[PID: 1500 / Administrator]

    C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Common Files\Kingsoft\kiscommon\DetectDllHijack.dll [(Verified)Kingsoft Corporation, 2010,08,30,159]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p></p><p>[PID: 456 / LOCAL SERVICE]

    C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 2380 / SYSTEM] C:\Program Files\Kingsoft\KSafe\KSafeSvc.exe [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\ksafeeng.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program

    Files\Kingsoft\KSafe\katrun.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\ksafebak.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\ksafedb.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program Files\Kingsoft\KSafe\kcache.dll [(Verified)Kingsoft Corporation., 1.5.0.1143]</p><p> C:\Program

    Files\Kingsoft\KSafe\knescan.dll [(Verified)Kingsoft Corporation., 1.0.0.1111]</p><p> C:\Program Files\Kingsoft\KSafe\kse\ksbwdet2.dll [(Verified)Kingsoft Corporation, 2010,08,26,1359]</p><p> C:\Program Files\Kingsoft\KSafe\kse\sqlite.dll [(Verified)Kingsoft Corporation, 2010,03,30,781]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\ksafeave.dll [(Verified)Kingsoft Corporation., 1.0.0.1114]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaecore.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p> C:\Program Files\Kingsoft\KSafe\kdump.dll [(Verified)Kingsoft Corporation,

    2010,08,24,1353]</p><p> C:\Program Files\Kingsoft\KSafe\kxebase.dll

    [(Verified)Kingsoft Corporation, 2010,5,12,402]</p><p> C:\Program Files\Kingsoft\KSafe\scom.dll [(Verified)Kingsoft Corporation, 2010,5,12,402]</p><p> C:\Program Files\Kingsoft\KSafe\kxecore\kxecore.dll [(Verified)Kingsoft Corporation, 2010,5,12,402]</p><p> C:\Program Files\Kingsoft\KSafe\kexectrl.dll [(Verified)Kingsoft Corporation, 2010,09,18,1422]</p><p> C:\Program Files\Kingsoft\KSafe\kwssp.dll [(Verified)Kingsoft Corporation, 2010,09,09,16]</p><p> C:\Program Files\Kingsoft\KSafe\json.dll [(Verified)N/A]</p><p> C:\Program Files\Kingsoft\KSafe\ksscore.dll [(Verified)Kingsoft Corporation, 2010,09,17,10]</p><p> C:\Program Files\Kingsoft\KSafe\kcldrep.dll [(Verified)Kingsoft Corporation, 2010,09,06,1388]</p><p> C:\Program

    Files\Kingsoft\KSafe\kse\ksecorex.dll [(Verified)Kingsoft Corporation, 2010,09,16,1206]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\karchive.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaearcha.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaeolea.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaearchb.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaeunpak.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaevname.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaeunpack.dat [(Verified)Kingsoft Corporation, 2010,07,18,365]</p><p> C:\Program Files\Kingsoft\KSafe\KEng\kae\kaecorea.dat [(Verified)Kingsoft Corporation, 2010,06,30,436]</p><p></p><p>[PID: 3324 / Administrator] D:\Program Files\Dr.COM宽带认证客户端\ishare_user.exe [城市热点有限公司, 3, 73, 4, 3704]</p><p>

    C:\WINDOWS\system32\packet.dll [(Verified)CACE Technologies, Inc., 4.1.0.1753]</p><p> C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program

    Files\Kingsoft\KSafe\ksfmon.dll [(Verified)Kingsoft Corporation., 1.5.0.1145]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p> C:\Program Files\Common Files\Kingsoft\kiscommon\DetectDllHijack.dll [(Verified)Kingsoft Corporation, 2010,08,30,159]</p><p> D:\Program Files\Dr.COM

    带认证客户端\drcomdll.dll [版权所有 (C) 2006, 1, 0, 0, 1]</p><p></p><p>[PID: 2148

    / NETWORK SERVICE] C:\WINDOWS\system32\wbem\wmiprvse.exe

    [(Verified)Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]</p><p> C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p></p><p>[PID: 1332 / Administrator]

    D:\arswp3x86\arswp3\ArSwp3.exe [(Verified)Windows 清理助手, 3.1.3.0815]</p><p>

    C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]</p><p> C:\Program Files\Kingsoft\KSafe\ksfmon.dll [(Verified)Kingsoft Corporation., 1.5.0.1145]</p><p> C:\Program

    Files\Kingsoft\Kingsoft WebShield\kwsui.dll [(Verified)Kingsoft Corporation, 2010,09,19,19]</p><p> C:\Program Files\Kingsoft\Kingsoft WebShield\kswebshield.dll [(Verified)Kingsoft Corporation, 2010,09,17,18]</p><p> C:\Program Files\Common

Report this document

For any questions or suggestions please email
cust-service@docsford.com