[CODE] 2013-06-14,14:10:46 System Repair Engineer 2.8.4.1331 Smallfrogs (http://www.KZTechs.com) Windows Server 2003 Enterprise Edition Service Pack 2 (Build 3790) - 管理权限用户 - 完整功能 以下内容被选中: 所有的启动项目(包括注册表、启动文件夹、服务等) 浏览器加载项 正在运行的进程(包括进程模块信息) 文件关联 Winsock 提供者 Autorun.inf HOSTS 文件 进程特权扫描 计划任务 API HOOK 隐藏进程 启动项目 注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] [(Verified)Microsoft Windows Component Publisher] [Rhino Software, Inc. +1(262) 560-9627] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <360Safetray><"C:\Program Files\360\360safe\safemon\360Tray.exe" /start> [(Verified)Qihoo 360 Software (Beijing) Company Limited] <%systemroot%\system32\dumprep 0 -u> [File is missing] [Industrial and Commercial Bank of China] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Microsoft Windows Component Publisher] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <%SystemRoot%\system32\logonui.exe> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{AEB6717E-7E19-11d0-97EE-00C04FD91972}> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] <%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <%SystemRoot%\system32\webcheck.dll> [(Verified)Microsoft Windows Component Publisher] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] <浏览器自定义组件> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] <%SystemRoot%\system32\ie4uinit.exe> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}] <%IEHARDENADMIN_BASE_DESC%><%SystemRoot%\system32\rundll32.exe iesetup.dll,IEHardenAdmin> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}] <%IEHARDENUSER_DESC%><%SystemRoot%\system32\rundll32.exe iesetup.dll,IEHardenUser> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sethc.exe] [(Verified)Microsoft Windows Component Publisher] [HKEY_CURRENT_USER\Control Panel\Desktop] [(Verified)Microsoft Windows Component Publisher] ================================== 启动文件夹 N/A ================================== 服务 [360 杀毒实时防护加载服务 / 360rp][Running/Manual Start] <"C:\Program Files\360\360sd\360rps.exe"><360.cn> [Adobe Flash Player Update Service / AdobeFlashPlayerUpdateSvc][Stopped/Manual Start] [Trigsk asoctkqy / Agygay qagkaq][Others/Auto Start] [Frkhsu aeisguqy / Cbnxfu oaamdq][Stopped/Auto Start] [DriverGenius PNP Service / DGPNPSEV][Running/Auto Start] [Human Interface Device Access / HidServ][Stopped/Disabled] %SystemRoot%\System32\hidserv.dll> [Intel(R) Capability Licensing Service Interface / Intel(R) Capability Licensing Service Interface][Running/Auto Start] <"C:\Program Files\Intel\iCLS Client\HeciServer.exe"> [Intel(R) Dynamic Application Loader Host Interface Service / jhi_service][Running/Auto Start] [Intel(R) Management and Security Application Local Management Service / LMS][Running/Auto Start] [Network DAB DAAM / Network DAB DAAM Service][Running/Auto Start] [OraclejngsjAgent / OraclejngsjAgent][Running/Auto Start] [OraclejngsjClientCache / OraclejngsjClientCache][Stopped/Manual Start] [OraclejngsjHTTPServer / OraclejngsjHTTPServer][Running/Auto Start] <"E:\work\oracle\ora92\Apache\Apache\apache.exe" --ntservice> [OraclejngsjPagingServer / OraclejngsjPagingServer][Stopped/Manual Start] [OraclejngsjSNMPPeerEncapsulator / OraclejngsjSNMPPeerEncapsulator][Stopped/Manual Start] [OraclejngsjSNMPPeerMasterAgent / OraclejngsjSNMPPeerMasterAgent][Stopped/Manual Start] [OraclejngsjTNSListener / OraclejngsjTNSListener][Running/Auto Start] [OracleMTSRecoveryService / OracleMTSRecoveryService][Stopped/Auto Start] <(File is missing)> [OracleOraHome92PagingServer / OracleOraHome92PagingServer][Stopped/Manual Start] <(File is missing)> [OracleServiceZYD / OracleServiceZYD][Running/Auto Start] [Serv-U FTP 服务器 / Serv-U][Running/Auto Start] [管理和帮助的系统信息资源服务项目。 / System Service Endos][Running/Auto Start] [Apache Tomcat / Tomcat5][Running/Auto Start] [Windows User Mode Driver / UmYdL][Running/Auto Start] C:\WINDOWS\System32\Mybfipwon.psd> [Intel(R) Management and Security Application User Notification Service / UNS][Running/Auto Start] <"C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"> [Windows Test My Testhkghhhtyu / Windows Test hjkhfhtyu][Running/Auto Start] [主动防御 / ZhuDongFangYu][Running/Auto Start] <"C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe"><360.cn> ================================== 驱动程序 [360AvFlt mini-filter driver / 360AvFlt][Running/Manual Start] <360.cn> [360Safe Camera Filter Service / 360Camera][Stopped/Manual Start] <360.cn> [360netmon / 360netmon][Running/System Start] <\??\C:\WINDOWS\system32\drivers\360netmon.sys><360.cn> [ASTGraphics / ASTGraphics][Running/Manual Start] [cpuz135 / cpuz135][Stopped/Manual Start] <\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\1\cpuz135\cpuz135_x32.sys> [Intel(R) PCI Express Network Connection Driver Q / e1qexpress][Running/Manual Start] [HaoZip Virtual Bus Driver / HaozipVirtualCDBus][Running/Manual Start] [HWCore / HWCore][Stopped/Manual Start] <\??\d:\Program Files\DTLSoft\DriveTheLife\hwcore.sys> [iaStorF / iaStorF][Running/Boot Start] <\SystemRoot\system32\DRIVERS\iaStorF.sys> [iaStorS / iaStorS][Running/Boot Start] <\SystemRoot\system32\DRIVERS\iaStorS.sys> [IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start] [IPMIDRV / IPMIDRV][Running/Manual Start] [megasas2 / megasas2][Running/Boot Start] <\SystemRoot\system32\DRIVERS\megasas2.sys> [Intel(R) Management Engine Interface / MEI][Running/Manual Start] [msas2k3 / msas2k3][Running/Boot Start] <\SystemRoot\system32\drivers\msas2k3.sys> [Passthru Service / Passthru][Stopped/Manual Start] [PassthruMP / PassthruMP][Running/Manual Start] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [Secdrv / Secdrv][Stopped/Manual Start] ================================== 浏览器加载项 [SSVHelper Class] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [Java Plug-in 1.5.0_09] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [Java Plug-in 1.5.0_09] {8AD9C840-044E-11D1-B3E9-00805F499D93} [Java Plug-in 1.5.0_09] {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} [Java Plug-in 1.5.0_09] {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, > [HTML Document] {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, (Signed) N/A> [QQPYChecker Class] {5052B4D0-9DF7-45ef-88EF-F42C0EA33A43} [SSVHelper Class] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [360SafeLive] {87515F61-A66C-4319-A0E0-D416CB8059E3} [SearchAssistantOC] {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A> [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [PlayerCtrl Class] {E05BC2A3-9A46-4a32-80C9-023A473F5B23} [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} ================================== 正在运行的进程 [PID: 336 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 400 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)] [PID: 424 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 472 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 484 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)] [PID: 660 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 724 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 796 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 832 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 848 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 1036 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.2.3790.4759 (srv03_sp2_gdr.100817-0343)] [PID: 1064 / SYSTEM][C:\WINDOWS\wordsa.exe] [N/A, ] [PID: 1160 / SYSTEM][C:\Program Files\MyDrivers\DriverGenius2012\DgService.exe] [MyDrivers.com, 2, 0, 0, 1] [C:\Program Files\MyDrivers\DriverGenius2012\DgRouteMsg.dll] [MyDrivers.com, 1.0.0.1] [C:\Program Files\MyDrivers\DriverGenius2012\PnpSup.dll] [MyDrivers.com, 1.0.0.1] [C:\Program Files\MyDrivers\DriverGenius2012\PatchCore.dll] [MyDrivers.com, 6.1.728.2055] [C:\Program Files\MyDrivers\DriverGenius2012\ksoft\kinfoc.dll] [Kingsoft Corporation, 2012,04,16,2906] [PID: 1208 / SYSTEM][C:\Program Files\Intel\iCLS Client\HeciServer.exe] [Intel(R) Corporation, 1.26.242.3 SYSTEM] [PID: 1224 / SYSTEM][C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe] [Intel Corporation, 8.1.10.1286] [PID: 1252 / SYSTEM][C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe] [Intel Corporation, 8.1.10.1300] [PID: 1272 / SYSTEM][C:\WINDOWS\Debug\svchost.exe] [N/A, ] [PID: 1548 / SYSTEM][E:\work\oracle\ora92\bin\agntsrvc.exe] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmi.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oraclient9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oracore9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oraunls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oravsn9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oracommon9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\orageneric9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oraxml9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\bin\oraxsd9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\bin\orannzsbb9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oran9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranl9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranldap9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oraldapclnt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orancrypt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\ORATRACE9.dll] [N/A, ] [E:\work\oracle\ora92\bin\oranro9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranhost9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranoname9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orancds9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orantns9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranms.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmsp.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\orapls9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oraslax9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orasnls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orawtc9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\orasql9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oravppdc.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmd.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmt.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranml.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\tcl82.dll] [Scriptics Corporation, 8.2.3] [E:\work\oracle\ora92\bin\orantcp9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [PID: 1568 / SYSTEM][E:\work\oracle\ora92\Apache\Apache\apache.exe] [N/A, ] [E:\work\oracle\ora92\Apache\Apache\ApacheCore.dll] [N/A, ] [E:\work\oracle\ora92\Apache\Apache\yod.dll] [N/A, ] [E:\work\oracle\ora92\Apache\Apache\Win9xConHook.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulemimemagic.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulemime.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleauthanon.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleauthdbm.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleauthdigest.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulecernmeta.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduledigest.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleexpires.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleheaders.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleproxy.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulerewrite.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulespeling.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleinfo.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulestatus.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleusertrack.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduledms.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleperl.dll] [N/A, ] [E:\work\oracle\ora92\Apache\Perl\5.00503\bin\mswin32-x86\Perl.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleoprocmgr.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulefastcgi.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulessl.dll] [N/A, ] [e:\work\oracle\ora92\apache\jserv\apachemodulejserv.dll] [N/A, ] [e:\work\oracle\ora92\bin\modplsql.dll] [N/A, ] [e:\work\oracle\ora92\bin\oracore9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraunls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\OCI.dll] [Oracle Corporation, 9.2.0.1.0] [PID: 1576 / SYSTEM][C:\WINDOWS\system32\cmd.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 1592 / SYSTEM][E:\work\oracle\ora92\BIN\TNSLSNR.exe] [N/A, ] [E:\work\oracle\ora92\BIN\oransgr9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oran9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oranl9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oranldap9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\orannzsbb9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oracore9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oranls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oraunls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\orageneric9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\BIN\oracommon9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\BIN\oraclient9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\BIN\oravsn9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\BIN\orawtc9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\BIN\orancrypt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oranro9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\orapls9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\BIN\oraslax9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\orasnls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\orasql9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oraxml9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\BIN\oraxsd9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\BIN\oraldapclnt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\ORATRACE9.dll] [N/A, ] [E:\work\oracle\ora92\BIN\oranhost9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oranoname9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\orancds9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\orantns9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\BIN\oranms.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\BIN\oranmsp.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranipc9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orantcp9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranbeq9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [PID: 1616 / SYSTEM][E:\work\oracle\ora92\bin\dbsnmp.exe] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmi.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oraclient9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oracore9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oraunls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oravsn9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oracommon9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\orageneric9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oraxml9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\bin\oraxsd9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\bin\orannzsbb9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oran9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranl9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranldap9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oraldapclnt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orancrypt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\ORATRACE9.dll] [N/A, ] [E:\work\oracle\ora92\bin\oranro9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranhost9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranoname9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orancds9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orantns9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranms.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmsp.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\orapls9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oraslax9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orasnls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orawtc9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\orasql9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oravppdc.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmd.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmt.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranml.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\tcl82.dll] [Scriptics Corporation, 8.2.3] [E:\work\oracle\ora92\bin\orantcp9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oravpnt.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oravpxdba.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oravpxeap.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oravpsqlsrv.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oravpxoafnd.dll] [Oracle Corporation, 9.2.0.0.0] [PID: 1640 / SYSTEM][e:\work\oracle\ora92\bin\ORACLE.EXE] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oraclient9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oracore9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraunls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oravsn9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oracommon9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\orageneric9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oraxml9.dll] [Oracle Corporation, ] [e:\work\oracle\ora92\bin\oraxsd9.dll] [Oracle Corporation, ] [e:\work\oracle\ora92\bin\orannzsbb9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oran9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranl9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranldap9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraldapclnt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orancrypt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\ORATRACE9.dll] [N/A, ] [e:\work\oracle\ora92\bin\oranro9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranhost9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranoname9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orancds9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orantns9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranms.dll] [Oracle Corporation, 9.2.0.0.0] [e:\work\oracle\ora92\bin\oranmsp.dll] [Oracle Corporation, 9.2.0.0.0] [e:\work\oracle\ora92\bin\orapls9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oraslax9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orasnls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orawtc9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\orasql9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraodm9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oraplp9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\orajox9.dll] [N/A, ] [e:\work\oracle\ora92\bin\oransgr9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orawwg9.dll] [Oracle Corporation, 8.1.7.0.0] [e:\work\oracle\ora92\bin\ocijdbc9.dll] [N/A, ] [E:\work\oracle\ora92\BIN\ORAIMR9.Dll] [Oracle Corporation, 9.2.0.1.0] [E:\work\oracle\ora92\bin\oranbeq9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orannts9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orantcp9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [PID: 1684 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 1724 / jnzyd][D:\Serv-U\Serv-U\ServUDaemon.exe] [Rhino Software, Inc. +1(262) 560-9627, 6, 2, 0, 1] [D:\Serv-U\Serv-U\zlib1.dll] [, 1.2.3] [D:\Serv-U\Serv-U\RhinoNET.dll] [Rhino Software, Inc. +1(262) 560-9627, 1, 0, 0, 2] [D:\Serv-U\Serv-U\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [D:\Serv-U\Serv-U\libeay32.DLL] [The OpenSSL Project, http://www.openssl.org/, 0.9.8a] [D:\Serv-U\Serv-U\ssleay32.DLL] [The OpenSSL Project, http://www.openssl.org/, 0.9.8a] [PID: 1824 / SYSTEM][C:\WINDOWS\system32\rgfxse.exe] [N/A, ] [PID: 1840 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 1852 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 1872 / LOCAL SERVICE][C:\WINDOWS\system32\tlntsvr.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 2080 / SYSTEM][e:\Program Files\Apache Software Foundation\Tomcat 5.0\bin\tomcat.exe] [Apache Software Foundation, 1.1.0] [PID: 2168 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [c:\windows\system32\mybfipwon.psd] [Sogou.com Inc., 5.2.0.5374] [PID: 2180 / SYSTEM][C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe] [Intel Corporation, 8.1.10.1300] [C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\ACE.dll] [, 6.0.0] [C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\WsmanClient.dll] [Intel Corporation, 8.1.10.1300] [C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\Common.dll] [Intel Corporation, 8.1.10.1300] [C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\GmsCommon.dll] [Intel Corporation, 8.1.10.1300] [C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\CONFIGURATOR.dll] [Intel Corporation, 8.1.10.1300] [PID: 2188 / SYSTEM][E:\Program Files\Java\jre1.5.0_09\bin\java.exe] [Sun Microsystems, Inc., 5.0.90.3] [E:\Program Files\Java\jre1.5.0_09\bin\client\jvm.dll] [Sun Microsystems, Inc., 5.0.90.3] [E:\Program Files\Java\jre1.5.0_09\bin\hpi.dll] [Sun Microsystems, Inc., 5.0.90.3] [E:\Program Files\Java\jre1.5.0_09\bin\verify.dll] [Sun Microsystems, Inc., 5.0.90.3] [E:\Program Files\Java\jre1.5.0_09\bin\java.dll] [Sun Microsystems, Inc., 5.0.90.3] [E:\Program Files\Java\jre1.5.0_09\bin\zip.dll] [Sun Microsystems, Inc., 5.0.90.3] [E:\Program Files\Java\jre1.5.0_09\bin\net.dll] [Sun Microsystems, Inc., 5.0.90.3] [PID: 2212 / SYSTEM][E:\work\oracle\ora92\Apache\Apache\apache.exe] [N/A, ] [E:\work\oracle\ora92\Apache\Apache\ApacheCore.dll] [N/A, ] [E:\work\oracle\ora92\Apache\Apache\yod.dll] [N/A, ] [E:\work\oracle\ora92\Apache\Apache\Win9xConHook.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulemimemagic.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulemime.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleauthanon.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleauthdbm.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleauthdigest.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulecernmeta.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduledigest.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleexpires.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleheaders.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleproxy.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulerewrite.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulespeling.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleinfo.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulestatus.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleusertrack.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduledms.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleperl.dll] [N/A, ] [E:\work\oracle\ora92\Apache\Perl\5.00503\bin\mswin32-x86\Perl.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemoduleoprocmgr.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulefastcgi.dll] [N/A, ] [e:\work\oracle\ora92\apache\apache\modules\apachemodulessl.dll] [N/A, ] [e:\work\oracle\ora92\apache\jserv\apachemodulejserv.dll] [N/A, ] [e:\work\oracle\ora92\bin\modplsql.dll] [N/A, ] [e:\work\oracle\ora92\bin\oracore9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraunls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\OCI.dll] [Oracle Corporation, 9.2.0.1.0] [E:\work\oracle\ora92\bin\OraClient9.Dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oravsn9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oracommon9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\orageneric9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oraxml9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\bin\oraxsd9.dll] [Oracle Corporation, ] [E:\work\oracle\ora92\bin\orannzsbb9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oran9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranl9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranldap9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oraldapclnt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orancrypt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\ORATRACE9.dll] [N/A, ] [E:\work\oracle\ora92\bin\oranro9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranhost9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranoname9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orancds9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orantns9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\oranms.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\oranmsp.dll] [Oracle Corporation, 9.2.0.0.0] [E:\work\oracle\ora92\bin\orapls9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\oraslax9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orasnls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [E:\work\oracle\ora92\bin\orawtc9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [E:\work\oracle\ora92\bin\orasql9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [PID: 2276 / SYSTEM][C:\WINDOWS\system32\wininitc.exe] [N/A, ] [C:\WINDOWS\system32\Black.dll] [N/A, ] [PID: 2604 / SYSTEM][E:\work\oracle\ora92\jdk\bin\java.exe] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\hotspot\jvm.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\hpi.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\verify.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\java.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\zip.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\net.dll] [N/A, ] [PID: 2612 / SYSTEM][E:\work\oracle\ora92\jdk\bin\java.exe] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\hotspot\jvm.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\hpi.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\verify.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\java.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\zip.dll] [N/A, ] [E:\work\oracle\ora92\jdk\jre\bin\net.dll] [N/A, ] [PID: 2644 / SYSTEM][e:\work\oracle\ora92\bin\isqlplus] [N/A, ] [e:\work\oracle\ora92\bin\oracommon9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oracore9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraunls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orageneric9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oraclient9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oravsn9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\orawtc9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\orannzsbb9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oran9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranl9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranldap9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraldapclnt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orancrypt9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\ORATRACE9.dll] [N/A, ] [e:\work\oracle\ora92\bin\oranro9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranhost9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranoname9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orancds9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orantns9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oranms.dll] [Oracle Corporation, 9.2.0.0.0] [e:\work\oracle\ora92\bin\oranmsp.dll] [Oracle Corporation, 9.2.0.0.0] [e:\work\oracle\ora92\bin\orapls9.dll] [Oracle Corporation, 9.2.0.1.0 Production ] [e:\work\oracle\ora92\bin\oraslax9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orasnls9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\orasql9.dll] [Oracle Corporation, 9.2.0.1.0 Production] [e:\work\oracle\ora92\bin\oraxml9.dll] [Oracle Corporation, ] [e:\work\oracle\ora92\bin\oraxsd9.dll] [Oracle Corporation, ] [PID: 3096 / NETWORK SERVICE][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 3144 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 1264 / LOCAL SERVICE][C:\WINDOWS\system32\logon.scr] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 3564 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)] [PID: 3520 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [C:\WINDOWS\system32\tssoft32.acm] [DSP GROUP, INC., 1.01] [C:\WINDOWS\system32\tsd32.dll] [, ] [C:\WINDOWS\system32\sl_anet.acm] [Sipro Lab Telecom Inc., 3.02] [C:\WINDOWS\system32\l3codeca.acm] [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0306] [PID: 3820 / Administrator][C:\WINDOWS\system32\rdpclip.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 4080 / Administrator][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.3790.3959 (srv03_sp2_rtm.070216-1710)] [C:\Program Files\360\360safe\safemon\360UDiskGuard.dll] [360.cn, 2, 0, 0, 1039] [C:\Program Files\360\360safe\SoftMgr\SoftMgrLiteLauncher.dll] [360.cn, 1, 0, 0, 1220] [C:\Program Files\360\360safe\safemon\safemon.dll] [360.cn, 8, 2, 2, 1342] [C:\Program Files\360\360safe\safemon\Safehmpg.dll] [360.cn, 1, 0, 0, 1157] [C:\Program Files\360\360safe\safemon\iNetSafe.dll] [360.cn, 1, 0, 2, 1310] [C:\Program Files\360\360safe\SoftMgr\SoftMgrExt.dll] [360.cn, 1, 0, 0, 1070] [C:\Program Files\360\360safe\SoftMgr\somkernl.dll] [360.cn, 2, 0, 0, 1070] [d:\Program Files\HaoZip\HaoZipExt.dll] [瑞创网络, 3.1.1.9229] [d:\Program Files\EditPlus 3\eppshell.dll] [N/A, ] [C:\Program Files\360\360sd\MenuEx.dll] [360.cn, 4, 0, 0, 3105] [C:\Program Files\360\360safe\Utils\shell360ext.dll] [360.cn, 7, 5, 0, 1205] [PID: 872 / Administrator][C:\WINDOWS\help\scvhost.exe] [Industrial and Commercial Bank of China, 1.0.0.7] [C:\Program Files\360\360safe\safemon\safemon.dll] [360.cn, 8, 2, 2, 1342] [PID: 2992 / Administrator][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)] [PID: 3724 / Administrator][D:\Serv-U\Serv-U\ServUTray.exe] [Rhino Software, Inc. +1(262) 560-9627, 6, 2, 0, 1] [PID: 3488 / NETWORK SERVICE][C:\WINDOWS\system32\msdtc.exe] [(Verified) Microsoft Corporation, 2001.12.4720.4340 (srv03_sp2_gdr.080723-1210)] [PID: 3116 / Administrator][C:\Program Files\360\360sd\360sd.exe] [360.cn, 4, 0, 0, 4033] [C:\Program Files\360\360safe\safemon\safemon.dll] [360.cn, 8, 2, 2, 1342] [C:\Program Files\360\360sd\360SignCheck.dll] [360.cn, 3, 0, 0, 2085] [C:\Program Files\360\360sd\CrashReport.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360safe\safemon\360UDiskGuard.dll] [360.cn, 2, 0, 0, 1039] [C:\Program Files\360\360sd\360Conf.dll] [360.cn, 1, 0, 0, 1004] [C:\Program Files\360\360safe\deepscan\cloudsec2.dll] [360.cn, 3, 2, 8, 2151] [C:\Program Files\360\360safe\360base.dll] [360.cn, 1, 0, 0, 1012] [C:\Program Files\360\360safe\360conf.dll] [360.cn, 1, 0, 0, 1006] [C:\Program Files\360\360sd\360NetBase.dll] [360.cn, 7, 25, 0, 3] [C:\Program Files\360\360safe\deepscan\cloudcom2.dll] [360.cn, 3, 3, 9, 3065] [PID: 1860 / Administrator][C:\Program Files\360\360sd\360rp.exe] [360.cn, 4, 0, 0, 4015] [C:\Program Files\360\360sd\360SignCheck.dll] [360.cn, 3, 0, 0, 2085] [C:\Program Files\360\360sd\360rp.dll] [360.cn, 4, 0, 0, 4033] [C:\Program Files\360\360sd\CrashReport.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\WhiteCache.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\360AvFlt.dll] [360.cn, 1.1.0.1015] [C:\Program Files\360\360sd\AVEI.dll] [360.cn, 1, 0, 0, 1013] [C:\Program Files\360\360sd\AVEngine.dll] [360.cn, 1, 0, 0, 1013] [C:\Program Files\360\360sd\QEX.dll] [360.cn, 4, 0, 1, 3155] [C:\Program Files\360\360safe\360base.dll] [360.cn, 1, 0, 0, 1012] [C:\Program Files\360\360safe\deepscan\cloudcom2.dll] [360.cn, 3, 3, 9, 3065] [C:\Program Files\360\360safe\360conf.dll] [360.cn, 1, 0, 0, 1006] [C:\Program Files\360\360safe\360NetBase.dll] [360.cn, 7, 25, 0, 3] [C:\Program Files\360\360safe\deepscan\heavygate.dll] [360.cn, 3, 7, 9, 3] [C:\Program Files\360\360sd\SDPlugin\AdPopWnd.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\SDPlugin\AutoRuns.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\SDPlugin\DiskErr.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\SDPlugin\IEErr.dll] [360.cn, 4, 0, 0, 4021] [C:\Program Files\360\360sd\SDPlugin\SysDump.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\SDPlugin\AntiDel.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\pluginmgr.dll] [360.cn, 4, 0, 0, 4012] [C:\Program Files\360\360sd\immplugin\Dllhijack.dll] [360.cn, 4, 0, 0, 3111] [C:\Program Files\360\360sd\immplugin\LockAcad.dll] [360.cn, 4, 0, 0, 3085] [C:\Program Files\360\360sd\immplugin\OfficeMacro.dll] [360.cn, 4, 0, 0, 3120] [C:\Program Files\360\360sd\immplugin\PopTrojan.dll] [360.cn, 4, 0, 0, 3122] [C:\Program Files\360\360safe\deepscan\cloudsec2.dll] [360.cn, 3, 2, 8, 2151] [C:\Program Files\360\360safe\deepscan\QVM\360qvm.dll] [360.cn, 3, 0, 0, 1002] [C:\Program Files\360\360safe\safemon\somproxy.dll] [360.cn, 1, 0, 0, 1280] [C:\Program Files\360\360safe\netmon\360netctrl.dll] [360.cn, 5, 3, 13, 2076] [C:\Program Files\360\360sd\QtQuart.dll] [360.cn, 4, 0, 0, 4021] [C:\Program Files\360\360safe\deepscan\softcheck.dll] [360.cn, 5, 7, 2, 2001] [C:\Program Files\360\360safe\deepscan\sysfilerepS.dll] [360.cn, 7, 2, 2, 2001] [C:\Program Files\360\360safe\deepscan\CQhCltHttpW.dll] [360.cn, 1, 0, 6, 1003] [C:\Program Files\360\360safe\deepscan\qutmload.dll] [360.cn, 7, 2, 1, 1023] [C:\Program Files\360\360sd\360pack.dll] [360.cn, 3, 0, 0, 2103] [C:\Program Files\360\360sd\SDPlugin\Sola.dll] [360.cn, 2, 1, 0, 2071] [PID: 3448 / SYSTEM][C:\Program Files\360\360sd\360rps.exe] [360.cn, 4, 0, 0, 4012] [PID: 3484 / SYSTEM][C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe] [360.cn, 3, 2, 2, 2020] [C:\Program Files\360\360safe\360util.dll] [360.cn, 1, 0, 0, 1042] [C:\Program Files\360\360safe\360base.dll] [360.cn, 1, 0, 0, 1012] [C:\Program Files\360\360safe\360conf.dll] [360.cn, 1, 0, 0, 1006] [C:\Program Files\360\360safe\360leakfixplugin.dll] [360.cn, 1, 0, 0, 1005] [C:\Program Files\360\360safe\deepscan\cloudcom2.dll] [360.cn, 3, 3, 9, 3065] [C:\Program Files\360\360safe\SoftMgr\360SoftMgrS.dll] [360.cn, 2, 1, 6, 1315] [C:\Program Files\360\360safe\360NetBase.dll] [360.cn, 7, 25, 0, 3] [C:\Program Files\360\360safe\deepscan\qutmload.dll] [360.cn, 7, 2, 1, 1023] [PID: 3208 / Administrator][C:\Program Files\360\360safe\safemon\360tray.exe] [360.cn, 7, 7, 0, 1097] [C:\Program Files\360\360safe\360common.dll] [360.cn, 7, 3, 0, 2020] [C:\Program Files\360\360safe\safemon\360compro.dll] [360.cn, 7, 2, 2, 1047] [C:\Program Files\360\360safe\ipc\ipcservice.dll] [360.CN, 7, 1, 1, 1065] [C:\Program Files\360\360safe\360Base.dll] [360.cn, 1, 0, 0, 1012] [C:\Program Files\360\360safe\ipc\yhregd.dll] [360.cn, 7, 2, 0, 1023] [C:\Program Files\360\360safe\ipc\appd.dll] [360.cn, 7, 3, 5, 1029] [C:\Program Files\360\360safe\ipc\netdefender.dll] [360.cn, 1, 0, 0, 1055] [C:\Program Files\360\360safe\safemon\360traylive.dll] [360.cn, 8, 0, 0, 2027] [C:\Program Files\360\360safe\safemon\SelfProtectAPI2.dll] [360.CN, 7, 0, 0, 1009] [C:\Program Files\360\360safe\safemon\360SafeCamera.tpi] [360.cn, 2, 0, 0, 1017] [C:\Program Files\360\360safe\safemon\360safemonpro.tpi] [360.cn, 3, 0, 0, 1160] [C:\Program Files\360\360safe\safemon\360TaskBar.tpi] [360.cn, 1, 0, 1, 1150] [C:\Program Files\360\360safe\safemon\DsTpi.tpi] [360.cn, 1, 0, 0, 2012] [C:\Program Files\360\360safe\safemon\Netm.tpi] [360.cn, 6, 0, 2, 1091] [C:\Program Files\360\360safe\safemon\netmon.tpi] [360.cn, 5, 1, 0, 3021] [C:\Program Files\360\360safe\safemon\obtracer.tpi] [360.cn, 6, 8, 0, 1143] [C:\Program Files\360\360safe\safemon\AutoCleanTrash.tpi] [360.cn, 1, 0, 0, 1004] [C:\Program Files\360\360safe\safemon\360TrayLogin.tpi] [360.cn, 2, 0, 1, 1901] [C:\Program Files\360\360safe\safemon\BootLeakFixer.tpi] [360.cn, 1, 0, 0, 1004] [C:\Program Files\360\360safe\ipc\qutmipc.dll] [360.cn, 7, 3, 0, 1029] [C:\Program Files\360\360safe\ipc\sbmon.dll] [360互联网安全中心, 3, 0, 0, 1007] [C:\Program Files\360\360safe\deepscan\qutmload.dll] [360.cn, 7, 2, 1, 1023] [C:\Program Files\360\360safe\safemon\WDRecord.dll] [360.cn, 1, 0, 1, 1030] [C:\Program Files\360\360safe\deepscan\heavygate.dll] [360.cn, 3, 7, 9, 3] [C:\Program Files\360\360safe\360conf.dll] [360.cn, 1, 0, 0, 1006] [C:\Program Files\360\360safe\safemon\360UDiskGuard.dll] [360.cn, 2, 0, 0, 1039] [C:\Program Files\360\360safe\SafeLive.dll] [360.cn, 3, 0, 0, 1039] [C:\Program Files\360\360safe\pdown.dll] [360.cn, 1, 3, 0, 1150] [C:\Program Files\360\360safe\ipc\DrvUtility.dll] [360.cn, 1, 0, 0, 1015] [C:\Program Files\360\360safe\360NetBase.dll] [360.cn, 7, 25, 0, 3] [C:\Program Files\360\360safe\safemon\SomProxy.dll] [360.cn, 1, 0, 0, 1280] [C:\Program Files\360\360safe\safemon\safemonhlp.dll] [360.cn, 1, 0, 0, 1060] [C:\Program Files\360\360safe\safemon\urlproc.dll] [360.cn, 2, 9, 1, 1020] [C:\Program Files\360\360safe\safemon\safemon.dll] [360.cn, 8, 2, 2, 1342] [C:\Program Files\360\360safe\DeepScan\cloudcom2.dll] [360.cn, 3, 3, 9, 3065] [C:\Program Files\360\360safe\netmon\3GIdentify.dll] [360.cn, 1, 0, 0, 1065] [C:\Program Files\360\360safe\netmon\360netmisc.dll] [360.cn, 1, 0, 0, 1012] [C:\Program Files\360\360safe\360Verify.dll] [360安全中心, 1, 0, 0, 1004] [C:\Program Files\360\360safe\netmon\mobileflux.dll] [360.cn, 1, 1, 1, 1035] [C:\Program Files\360\360safe\netmon\360netctrl.dll] [360.cn, 5, 3, 13, 2076] [C:\Program Files\360\360safe\360Login.dll] [360.cn, 1, 0, 0, 1254] [C:\Program Files\360\360safe\netmon\Netgm.dll] [360.cn, 2, 1, 1, 1080] [C:\Program Files\360\360safe\360NetUL.dll] [360.cn, 1, 0, 0, 1018] [C:\Program Files\360\360safe\netmon\360gameidentify.dll] [360.cn, 1, 0, 0, 1001] [C:\Program Files\360\360safe\360UData.dll] [360.cn, 9, 0, 0, 1055] [C:\Program Files\360\360safe\netmon\360perfoptm.dll] [360.cn, 1, 1, 2, 1121] [C:\Program Files\360\360safe\360UCenter.dll] [360.cn, 9, 0, 0, 1055] [C:\Program Files\360\360safe\MiniUI.dll] [360.cn, 9, 0, 0, 2100] [C:\Program Files\360\360safe\sites.dll] [360.cn, 9, 0, 0, 1100] [C:\Program Files\360\360safe\Utils\SiteUIProxy.dll] [360.cn, 9, 0, 0, 2021] [C:\Program Files\360\360safe\Utils\360UKeepAlive.dll] [360.cn, 1, 0, 0, 1005] [C:\Program Files\360\360safe\safemon\360webpro.dll] [360.CN, 2, 2, 2, 2303] [C:\Program Files\360\360safe\LiveUpd360.dll] [360.cn, 1, 3, 0, 1150] [C:\Program Files\360\360safe\360net.dll] [360.cn, 1, 2, 0, 1060] [C:\Program Files\360\360safe\360P2SP.dll] [360.cn, 1, 3, 0, 1150] [C:\Program Files\360\360safe\combineext.dll] [360.cn, 1, 0, 0, 1001] [c:\program files\360\360safe\deepscan\bapi.dll] [360.cn, 2.0.0.1042] [C:\Program Files\360\360safe\safemon\Adfilter.dll] [360.cn, 1, 0, 0, 2008] [PID: 476 / Administrator][C:\Program Files\360\360safe\LiveUpdate360.exe] [360.cn, 1, 3, 0, 1150] [C:\Program Files\360\360safe\Utils\SiteUIProxy.dll] [360.cn, 9, 0, 0, 2021] [C:\Program Files\360\360safe\safemon\safemon.dll] [360.cn, 8, 2, 2, 1342] [C:\Program Files\360\360safe\LiveUpd360.dll] [360.cn, 1, 3, 0, 1150] [C:\Program Files\360\360safe\360net.dll] [360.cn, 1, 2, 0, 1060] [C:\Program Files\360\360safe\360P2SP.dll] [360.cn, 1, 3, 0, 1150] [C:\Program Files\360\360safe\MiniUI.dll] [360.cn, 9, 0, 0, 2100] [C:\Program Files\360\360safe\sites.dll] [360.cn, 9, 0, 0, 1100] [PID: 5440 / Administrator][C:\Documents and Settings\Administrator\桌面\SREngLdr.EXE] [Smallfrogs Studio, 2.8.4.1331] [PID: 5452 / Administrator][C:\Documents and Settings\Administrator\桌面\SRE57f19fa8.EXE] [Smallfrogs Studio, 2.8.4.1331] [C:\Program Files\360\360safe\safemon\safemon.dll] [360.cn, 8, 2, 2, 1342] ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ================================== 进程特权扫描 N/A ================================== 计划任务 N/A ================================== Windows 安全更新检查 N/A ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]